Importing or declaring a certificate for a firewall

A DER or PEM certificate is required for each firewall that is part of a VPN topology using .X509 authentication.

A PKCS#12 identity can be installed on the firewall from the SMC server, which retrieves the corresponding certificate.

The certificate can be imported on the SMC server from the server's web interface or from the command line interface. Several certificates may be imported for a single firewall.

Certificates used by an SNS firewall can also be declared on SMC without having to import them on the server (SCEP or EST protocols).