Filter
Top Products
SONICWALL SONICOS STANDARD 3.0 ADMINISTRATOR’S GUIDE
243
VPN > Local Certificates
Delete This Certificate
To delete the certificate, click Delete This Certificate. You can delete a certificate if it has expired or
if you decide not to use third party certificates for VPN authentication.
Generating a Certificate Signing Request
To generate a local certificate for use with a VPN policy, follow these steps:
9
Tip: You should create a Certificate Policy to be used in conjunction with local certificates. A
Certificate Policy determines the authentication requirements and the authority limits required for the
validation of a certificate.
1
Select Add New Local Certificate from the Certificates menu.
2
In the Generate Certificate Signing Request section, enter a name for the certificate in the
Certificate Name field.
3
Enter information for the certificate in the Request fields. As you enter information in the Request
fields, the Distinguished Name (DN) is created in the Subject Distinguished Name field.
You can also attach an optional Subject Alternative Name to the certificate such as the Domain
Name or E-mail Address. You need to provide the proper input for the Domain Name
(yourcompanyname.com) or E-mail Address (abc@yourcompanyname.com) option in the
corresponding field.
4
The Subject Key type is preset as an RSA algorithm. RSA is a public key cryptographic algorithm
used for encrypting data.
5
Select a Subject Key size from the Subject Key Size menu.
Note: Not all key sizes are supported by a Certificate Authority, therefore you should check with your
CA for support key sizes.
6
Click Generate to create a certificate file. Once the Certificate Signing Request is generated, a
message describing the result is displayed.
7
Click Export to download the file to your computer, then click Save to save it to a directory on your
computer.
You have generated the Certificate Request that you can send to your Certificate Authority for
validation.