User's Manual

Chapter 50 Certificates

ISG50 User’s Guide

645

• Binary PKCS#12: This is a format for transferring public key and private key certificates.The

private key in a PKCS #12 file is within a password-encrypted envelope. The file’s password is not

connected to your certificate’s public or private passwords. Exporting a PKCS #12 file creates this

and you must provide it to decrypt the contents when you import the file into the ISG50.

Note: Be careful not to convert a binary file to text during the transfer process. It is easy

for this to occur since many programs use text files by default.

Finding Out More

•See Section 6.7 on page 103 for related information on these screens.

•See Section 50.4 on page 659 for certificate background information.

50.1.3 Verifying a Certificate

Before you import a trusted certificate into the ISG50, you should verify that you have the correct

certificate. You can do this using the certificate’s fingerprint. A certificate’s fingerprint is a message

digest calculated using the MD5 or SHA1 algorithm. The following procedure describes how to check

a certificate’s fingerprint to verify that you have the actual certificate.

1 Browse to where you have the certificate saved on your computer.

2 Make sure that the certificate has a “.cer” or “.crt” file name extension.

Figure 430 Remote Host Certificates