Which certificates do i need, Selecting certificates in vpn tracker – equinux VPN Tracker 8.1.1 User Manual

Which Certificates Do I Need?

To use certificate-based authentication in VPN Tracker, you will need the fol-
lowing certificates in your OS X keychain:

VPN Client:
‣ VPN client (VPN user) certificate and
‣ Private key belonging to the VPN client (VPN user) certificate

VPN Gateway (optional):
‣ VPN gateway’s certificate (without the private key) or
‣ Certificate authority (CA) that signed the VPN gateway’s certificate. Its cer-

tificate must be set as trusted on your Mac. The VPN gateway must be ca-
pable of sending its actual certificate upon connection initiation, which is
the case for almost all VPN gateways

You can easily check if a private key is available for a given certifi-
cate by selecting the “My Certificates” category in the left column
in Keychain Access. If a certificate appears there, it has a private
key available.

Selecting Certificates in VPN Tracker

If you have not yet done so, set the authentication method to “Certificates”.

Make sure your VPN gateway is already configured for certificate-
based (X.509 certificates / RSA signatures) authentication before
starting to configure VPN Tracker.

In the certificate selection window, select your certificate(s). The certificate
selection window opens automatically if you are not yet using certificates. If
you have already selected some certificates earlier, click the “Edit” button on
the Basic tab.

76