Obtaining and Importing a CA-signed Client Certificate

You can obtain a CA-signed certificate by creating a CSR (Certificate Signing Request) using Web Config and submitting it to a certificate authority. The CSR created in Web Config is in PEM/DER format. You can import one CSR created from Web Config at a time.
  1. Access Web Config and select Network Security Settings.
  2. Select one of the following network security options and corresponding certificates:
    • SSL/TLS and select Certificate
    • IPsec/IP Filtering and select Client Certificate
    • IEEE802.1X and select Client Certificate
  3. In the CSR section, select Generate. You see a window like this:


  4. Select the CSR setting options you want to use.
  5. Click OK. You see a completion message.
  6. Select Network Security Settings, select your network security option, and select Certificate again.
  7. In the CSR section, click the Download option that matches the format specified by your certificate authority to download the CSR.
    Caution:
    Do not generate another CSR or you may not be able to import a CA-signed certificate.
  8. Submit the CSR to the certificate authority following the format guidelines provided by that authority.
  9. Save the issued CA-signed certificate to a computer connected to the product. Before proceeding, make sure the time and date settings are correct on your product. See the product's User's Guide for instructions.
  10. Select Network Security Settings, select your network security option, and select Certificate again.
  11. In the CA Certificate section, click Import. You see a window like this:


  12. Select the format of the certificate as the Server Certificate setting.
  13. Select the certificate import settings as necessary for the format and the source from which you obtained it.
  14. Click OK. You see a confirmation message.
  15. Click Confirm to verify the certificate information.