Loading Local Certificate into NSM Management System

For CA-signed local certificates, after you prompt the device to generate the certificate request, the device creates the public/private key pair that is used to create the local certificate and returns the public key to the management system (the private key never leaves the device). During this time, the certificate status is key pair, meaning that a key pair exists but no certificate has been loaded.

After you obtain the local certificate, you must load the certificate into the management system using the NSM UI, and then install the certificate on the managed device:

After the certificate is installed on the device, the certificate is known as active. To view the current status of your certificate requests, open the device configuration and select VPN Settings > Local Certificates:

Related Documentation