Configuring a Secure Access Certificate Server Instance (NSM Procedure)
The certificate server feature allows users to authenticate based on attributes contained in client-side certificates. You may use the certificate server by itself or in conjunction with another server to authenticate users and map them to roles.
To configure certificate server instance:
- In the NSM navigation tree, select Device Manager > Devices. Click the Device Tree tab, and then double-click the Secure Access device for which you want to configure user roles.
- Click the Configuration tab, and then select System > Configuration > Certificates > Trusted Client CAs tab to import the CA certificate used to sign the client-side certificates. The corresponding workspace appears.
- Select Authentication > Auth Servers.
- Click the New button.
The New dialog box appears.
Note: If you want to update an existing server instance, click the appropriate link in the Auth Server Name box, and perform the Steps 5 through 8.
- Specify a name to identify the server instance.
- Select Certificate Server from the Auto Server Type list.
- Configure the server using the settings described in Table 1.
- Click one:
- OK—Saves the changes.
- Cancel—Cancels the modifications.
Table 1: Secure Access Certificate Configuration Details
