Use this tab to manage the personal certificates An integral part of a PKI (Public Key Infrastructure). Digital certificates (also called X.509 certificates) are issued by a certificate authority (CA), which ensures the validity of the information in the certificate. Each certificate contains identifying information about the certificate owner, a copy of the certificate owner's public key (used for encrypting and decrypting messages and digital signatures), and a digital signature (generated by the CA based on the certificate contents). The digital signature is used by a recipient to verify that the certificate has not been tampered with and can be trusted. in the Reflection certificate store. Personal certificates are used for user (client) authentication.
The options are:
|
Add a certificate to the Reflection store. The imported file (typically a *.pfx or *.p12) must include a private key. Depending on how the file was created, you may be prompted for a password before you can import the file. You will be prompted to enter a passphrase A passphrase is similar to a password, except it can be a phrase with a series of words, punctuation, numbers, white space, or any string of characters. Passphrases improve security by limiting access to secure objects, such as private keys and/or a key agent. for to protect the private key in the Reflection store. If you specify a passphrase, you'll be prompted for this passphrase when this certificate is used to authenticate to a host. |
|
Remove the selected certificate from the Reflection store. |
|
View the selected certificate. |
|
Change the passphrase A passphrase is similar to a password, except it can be a phrase with a series of words, punctuation, numbers, white space, or any string of characters. Passphrases improve security by limiting access to secure objects, such as private keys and/or a key agent. for the selected certificate. |