Technical Documentation

Configuring an Infranet Controller Certificate Server Instance (NSM Procedure)

The certificate server feature allows users to authenticate based on attributes contained in client-side certificates. You may use certificate server by itself or in conjunction with another server to authenticate users and map them to roles.

Import the CA certificate used to sign the client-side certificates.

To configure certificate server instance:

  1. In the NSM navigation tree, select Device Manager> Devices.
  2. Click the Device Tree tab, and then double-click the Infranet Controller for which you want to configure a certificate server instance.
  3. Click the Configuration tab. In the configuration tree, use settings in the System > Configuration > Certificates > CA Certificates tab to import the CA certificate used to sign the client-side certificates.
  4. Configure the certificate server instance, by selecting Authentication > Auth Servers. Then add or modify certificate server settings as specified in Table 1.
  5. Click one:
    • OK—Saves the changes.
    • Cancel—Cancels the modifications.

Table 1: Certificate Server Instance Configuration Details

Option Function Your Action

Auth Server Name

Specifies a name for the auth server.

Enter a name for the auth server.

Auth Server Type

Specifies the auth server type.

Select Certificate Server.

Certificate Settings

User Name Template

Specifies how the Infranet Controller should construct a username.

Enter any combination of certificate variables contained in angle brackets and plain text.

Server Catalog > Expressions tab

Name

Specifies a name for the user expression in the certificate server user directory.

Enter a name for the user expression.

Value

Specifies a value for the user expression in the certificate server user directory.

Enter a value for the user expression.

Published: 2009-08-20