HomeWeb Management ToolVerifying a certificate for peer

Verifying a certificate for peer

You can configure the settings for verifying reliability of the certificate (expiration date, CN, key usage, etc.).

To check the expiration of certificate, register the URL of the Online Certificate Status Protocol (OCSP) service.

Select [Security] - [Certificate Verification Settings] in administrator mode of Web Connection (or in [Utility] - [Administrator] of this machine), and configure the following settings.

Setting

Description

[Certificate Verification Settings]

When verifying the reliability of the peer's certificate, set this option to ON (default: ON).

[Timeout]

Change the time-out time of certificate expiration confirmation if necessary (default: [30] sec.).

[OCSP Service]

Using the Online Certificate Status Protocol (OCSP) enables you to check online whether or not the certificate is expired.

When using the OCSP service, set this option to ON. Also, enter the URL of the OCSP service (using up to 511 characters).

If [URL] is left blank, the URL of the OCSP service embedded in the certificate will be used.

[Proxy Settings]

When a proxy server is installed in your environment, register the proxy server.

  • [Proxy Server Address]: Enter the proxy server address. Use one of the following formats.
    Example to enter the host name: "host.example.com"
    Example to enter the IP address (IPv4): "192.168.1.1"
    Example to enter the IP address (IPv6): "fe80::220:6bff:fe10:2f16"

  • [Proxy Server Port Number]: If necessary, change the proxy server port number (default: [8080]).

  • [User Name]: Enter the user name used for proxy authentication (using up to 63 characters).

  • [Password]: Enter the password for proxy authentication (using up to 63 characters).

  • [Address not using Proxy Server]: Enter an address that does not use the proxy server as needed.