11 trusted ca details, Table 99 security > certificates > trusted cas – ZyXEL Communications ZyXEL ZyWALL 2WG User Manual

Chapter 15 Certificates

ZyWALL 2WG User’s Guide

311

The following table describes the labels in this screen.

15.11 Trusted CA Details

Click SECURITY > CERTIFICATES > Trusted CAs to open the Trusted CAs screen.
Click the details icon to open the Trusted CA Details screen. Use this screen to view in-depth
information about the certification authority’s certificate, change the certificate’s name and set
whether or not you want the ZyWALL to check a certification authority’s list of revoked
certificates before trusting a certificate issued by the certification authority.

Table 99 SECURITY > CERTIFICATES > Trusted CAs

LABEL

DESCRIPTION

PKI Storage

Space in Use

This bar displays the percentage of the ZyWALL’s PKI storage space that is

currently in use. When the storage space is almost full, you should consider

deleting expired or unnecessary certificates before adding more certificates.

#

This field displays the certificate index number. The certificates are listed in

alphabetical order.

Name

This field displays the name used to identify this certificate.

Subject

This field displays identifying information about the certificate’s owner, such as CN

(Common Name), OU (Organizational Unit or department), O (Organization or

company) and C (Country). It is recommended that each certificate have unique

subject information.

Issuer

This field displays identifying information about the certificate’s issuing certification

authority, such as a common name, organizational unit or department,

organization or company and country. With self-signed certificates, this is the

same information as in the Subject field.

Valid From

This field displays the date that the certificate becomes applicable. The text

displays in red and includes a Not Yet Valid! message if the certificate has not yet

become applicable.

Valid To

This field displays the date that the certificate expires. The text displays in red and

includes an Expiring! or Expired! message if the certificate is about to expire or

has already expired.

CRL Issuer

This field displays Yes if the certification authority issues Certificate Revocation

Lists for the certificates that it has issued and you have selected the Issues

certificate revocation lists (CRL) check box in the certificate’s details screen to

have the ZyWALL check the CRL before trusting any certificates issued by the

certification authority. Otherwise the field displays “No”.

Modify

Click the details icon to open a screen with an in-depth list of information about the

certificate.
Use the export icon to save the certificate to a computer. Click the icon and then

Save in the File Download screen. The Save As screen opens, browse to the

location that you want to use and click Save.
Click the delete icon to remove the certificate. A window displays asking you to

confirm that you want to delete the certificates. Note that subsequent certificates

move up by one when you take this action.

Import

Click Import to open a screen where you can save the certificate of a certification

authority that you trust, from your computer to the ZyWALL.

Refresh

Click this button to display the current validity status of the certificates.