Certificates and PKI
This section provides recommendations relating to the use of certificates by the SNS firewall and the SMC server.
SNS firewalls and the SMC server need to use certificates in several cases, including:
-
The publication of the web administration interface in HTTPS,
-
The authentication of administrators via certificate to access the SNS firewall’s web administration interface,
-
The authentication of users and gateways to set up IPsec VPN tunnels,
-
The authentication of users and gateways to set up SSL VPN/TLS services,
-
The connection to an external directory in LDAPS,
-
The connection of SNS firewalls to the SMC server.