Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Communication b/w Intranet Enforcer (SSG) and IC requrie CA-singed Certificate?

pentium-v_
New Contributor
‎06-21-2009 12:42:PM
‎06-21-2009 12:42:PM

Communication b/w Intranet Enforcer (SSG) and IC requrie CA-singed Certificate?

Hello freinds

I am testing UAC solution in lab. I have IC and SSG. I read for communication b/w SSG and IC require both have CA-signed certificate. My question is that how can i get CA-signed certificate to install on IC and SSG for testing purpose? I dont have CA-singed certificate. Is there any method available like preshare key etc for communication b/w SSG and IC?

Thanks a lot in advance

0 Kudos
6 REPLIES 6
Screenie_
Contributor
‎06-21-2009 01:06:PM
‎06-21-2009 01:06:PM

Re: Communication b/w Intranet Enforcer (SSG) and IC requrie CA-singed Certificate?

Easiest thing to do is download a simple (freeware) CA. copy root certs to IC and SSG and create two certs requests. Install the device certs and go with it.

( check this http://www.netcraftsmen.net/welcher/papers/certauth01.html )

Message Edited by Screenie on 06-21-2009 10:06 PM
Message Edited by Screenie on 06-21-2009 10:10 PM
0 Kudos
pentium-v_
New Contributor
‎06-22-2009 12:29:PM
‎06-22-2009 12:29:PM

Re: Communication b/w Intranet Enforcer (SSG) and IC requrie CA-singed Certificate?

Thanks screenie for your answer. Can you please guide me how to generate this software we can generate CA-singed certificate which is then i install on both SSG and IC.

Thanks in advance

0 Kudos
Screenie_
Contributor
‎06-22-2009 01:28:PM
‎06-22-2009 01:28:PM

Re: Communication b/w Intranet Enforcer (SSG) and IC requrie CA-singed Certificate?

I googled: this looks like a ready to use freeware http://www.softpedia.com/get/Security/Encrypting/LightCA.shtml or maybe you have a AD server in your lab? You can install a MS certserver on a AD server.
0 Kudos
muttbarker_
Valued Contributor
‎06-22-2009 04:30:PM
‎06-22-2009 04:30:PM

Re: Communication b/w Intranet Enforcer (SSG) and IC requrie CA-singed Certificate?

If you don't want to build out a cert server there is an excellent CA Cert offered up by CACert.org - it is open source based and quite easy to use. You will need to import their root certificate into your browser but they are trustworthy and you can't be the cost Smiley Happy
0 Kudos
ssl_boy_
Contributor
‎08-09-2009 12:06:PM
‎08-09-2009 12:06:PM

Re: Communication b/w Intranet Enforcer (SSG) and IC requrie CA-singed Certificate?

Hi,

Easier still, just use openssl; there is a complete example "how-to" in the admin guide (just do a search). Follow the instructions CAREFULLY and you'll be their, takes about 20 mins.

enjoy.

0 Kudos
ManojReddy_
Contributor
‎08-30-2009 10:57:AM
‎08-30-2009 10:57:AM

Re: Communication b/w Intranet Enforcer (SSG) and IC requrie CA-singed Certificate?

You need to install device cert(server certificate) on IC And CA cert on FW.

as some one mentioned above, you donot need to install device cert on FW. FW needs only CA certificate of CA which issued certificate to IC.

reply, if you are still facing the issue.

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.