Back – Cisco VPN 3002 User Manual

12-52

VPN 3002 Hardware Client Reference

OL-1893-01

Chapter 12 Administration

Administration | Certificate Management | View

Back

To return to the Administration | Certificate Management screen, click Back.

SHA1 Thumbprint

A 160-bit SHA-1 hash of the complete certificate contents, shown as a 20-byte
string. This value is unique for every certificate, and it positively identifies the
certificate. If you question a certificate’s authenticity, you can check this value
with the issuer.

Validity

The time period during which this certificate is valid.

Format is MM/DD/YYYY at HH:MM:SS to MM/DD/YYYY at HH:MM:SS.
Time uses 24-hour notation, and is local system time.

The Manager checks the validity against the VPN 3002 system clock, and it
flags expired certificates in event log entries.

Subject Alternative
Name (Fully
Qualified Domain
Name)

The fully qualified domain name for this VPN 3002 that identifies it in this
PKI. The alternative name is an optional additional data field in the certificate,
and it provides inter operability with many Cisco IOS and PIX systems in
LAN-to-LAN connections.

CRL Distribution
Point

The distribution point for CRLs from the issuer of this certificate. If this
information is included in the certificate in the proper format, and you enable
CRL checking, you do not have to provide it on the Administration | Certificate
Management | Configure CA Certificate screen.

Field

Content