(Required) Add a CA
Certificate to assign to the profile. Optionally,
if the firewall uses Online Certificate Status Protocol (OCSP) to
verify certificate revocation status, configure the following fields
to override the default behavior. For most deployments, these fields
do not apply. By default, the firewall uses the Authority Information
Access (AIA) information from the certificate to extract the OCSP
responder information. To override the AIA information, enter a Default
OCSP URL (starting with http:// or https://). By default, the firewall uses the certificate selected in
the CA Certificate field to validate OCSP
responses. To use a different certificate for validation, select
it in the OCSP Verify CA Certificate field.
In
addition, enter a Template Name to identify
the template that was used to sign the certificate. |