Sign self-cerfictate for remote VPN

Zyxel_Kevin
Zyxel_Kevin Posts: 912  Zyxel Employee
Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 500 Comments
edited March 2024 in VPN

Scenario:

You need to sign a self-certificate since the original cerficate had expired .And you tried to sign from Firewall GUI.

Solution:

For remote VPN certificate usage, You need to be awared for these

1)Key Type must be "RSA-SHA256"

2)Extended key Usage must contain "IKE Intermediate"

Tagged: