Addendum, Networka ir acpa4000 – American Power Conversion AIRACPA4000 User Manual

®

®

®

®

ADDENDUM

NetworkA

IR ACPA4000

26

How certificates are used.

Most Web browsers, including all browsers

supported by the Network Management Card, contain a set of CA root
certificates from all of the commercial Certificate Authorities.

Authentication of the server (in this case, the Network Management Card)
occurs each time a connection is made from the browser to the server. The
browser checks to be sure that the server’s certificate is signed by a
Certificate Authority known to the browser. For this authentication to occur:

• Each Network Management Card with SSL enabled must have a

server certificate on the Network Management Card itself.

• Any browser that is used to access the Network Management Card’s

Web interface must contain the CA root certificate that signed the
server certificate.

If authentication fails, the browser prompts you on whether to continue
despite the fact that it cannot authenticate the server.

If your network does not require the authentication provided by digital
certificates, you can use the default certificate that the Network
Management Card generates automatically. The default certificate’s digital
signature will not be recognized by browsers, but a default certificate
enables you to use SSL for the encryption of transmitted user names,
passwords, and data. (If you use the default certificate, the browser
prompts you to agree to unauthenticated access before it logs you on to the
Web interface of the Network Management Card.)

How SSH host keys are used.

An SSH host key authenticates the identity

of the server (the Network Management Card) each time an SSH client
contacts the Network Management Card. Each Network Management Card
with SSH enabled must have an SSH host key on the Network
Management Card itself.