Showing results for 
Search instead for 
Did you mean: 

How to configure a new certificate for a new IP address before the address is changed on the VPN 300 series concentrator with software version 4.7 ?


What is Certificate Authority (CA)?

Certificate authority (CA) in network is an authority which issues and manages security credentials and public keys used for message encryption. As being part of  public key infrastructure (PKI),  CA checks with a registration authority (RA) to verify the information provided by the user requesting Digital Certficate. If  RA verifies the requestor's information positive, then CA issue a certificate.


Note: Before this procedure can be used, ensure that the VPN 3000 Concentrator and Microsoft 2003 Certificate Authority (CA) server have installed certificates.

To request a certificate for an IP address that is not in use by the concentrator, perform this procedure:

  1. Go to Administration > Certificate Management > SSL certificates. Navigate to the public interface and choose the Enroll option.

  2. Enroll through the PKCS10 Manual.

  3. Copy and paste the request from the pop-up window.

  4. Go to the Microsoft CA server. Use the new IP address to submit the certificate request.

    Note: Use a base-64-encoded CMC or PKCS #10 file to submit a certificate request, or use a base-64-encoded PKCS #7 file to submit a renewal request.

  5. Copy and paste the request. Then, submit.

  6. After the request is issued by the CA, return to the Microsoft CA server.

  7. Download the issued certificate.


This procedure enrolls the certificate. It can be installed once the public IP address changes.

Product Family

VPN - 3000 series concentrator

VPN 3000 Software Version


Content for Community-Ad