X.509 Certificates
When X.509 certificates are used to establish the identity of a remote IPsec peer, the firewall must also have an X.509 certificate itself. The same certificate is used for all peers. Here you select what certificate to use. All local certificates for the firewall are created on the Certificates page under Basic Configuration.
Use this certificate for IPsec
Select which of the firewall certificates to use for IPsec authentication. The same certificate is used for all peers.
CA server certificates
You can select to trust peer certificates signed by trusted CA servers. List the trusted CAs here. This is required if you want to use Trusted CA or Trusted CA, with DN as authentication types.
CA
Select a CA from which the firewall should accept connections. The CA certificates are imported on the Certificates page.
Delete row
If you select this box, the row is deleted when you click on Add new rows or Save.
Add new rows
Enter the number of new rows you want to add to the table, and then click on Add new rows.
Save
Saves all X.509 Certificates configuration to the preliminary configuration.
Undo
Clears and resets all fields in new rows and resets changes in old rows.