Associating certificates with ipsec tunnels – Amer Networks E5Web GUI User Manual

4.

Use the file chooser to select a certificate file with the filetype .cer. No private key file should
be present. When InControl asks if the private key should be imported, answer No.

5.

Click OK

Web Interface

1.

Go to: Objects > Key Ring > Add > Certificate

2.

Specify a suitable name for the certificate, for example my_remote_cert

3.

Select Upload a remote certificate

4.

Use the enabled file chooser to select the local public certificate file.

5.

Click OK

Using Uploaded Certificates

Once certificates are uploaded, they are stored in non-volatile cOS Core memory. To be used
they must be explicitly associated with a cOS Core object. For example, an IPsec tunnel object
that uses certificates must be assigned a Gateway and Root certificate.

Example 3.33. Associating Certificates with IPsec Tunnels

To associate an imported certificate with an IPsec tunnel.

InControl

Follow the same steps used for the Web Interface below.

Web Interface

1.

Go to: Network > Interfaces and VPN > IPsec

2.

Display the properties of the IPsec tunnel

3.

Select Authentication

4.

Select the X509 Certificate option

5.

Select the correct Gateway and Root certificates

6.

Click OK

Chapter 3: Fundamentals

228