SSL Scanner
Trusted Certificate Authorities
The
Trusted Certificate Authorities
section looks like this:
This section provides the list of Trusted Certificate Authorities (CAs). Also pro-
vided is a list of known CAs, from which you can select CAs to include them in
the list of trusted CAs. When including a CA in this list, you can configure it as
trusted or not trusted.
If a CA has been included in the list of trusted CAs as not trusted, certificates
issued by it will be explicitly forbidden, i. e. will also not be trusted. This is
indicated in status messages referring to a certificate.
If a CA is not included in the list at all, certificates issued by it may be implicitly
forbidden, which is also indicated in status messages.
Note that besides this list, which is configured only for a particular policy, there
is also the list of Global Trusted Certificate Authorities. If a CA does not appear
in the list of trusted CAs configured here, the settings configured for the global
list will apply.
To select a CA from the list of known CAs and add it to the list of trusted CAs,
use the area labeled:
•
Select CA
Select the CA you want to add to the list of trusted CAs from the drop-down
list provided here.
If this list is empty, it means that all known CAs have been included in the
list of trusted CAs, either as trusted or not trusted.
The addition of a CA here will be valid only under the policy you are cur-
rently configuring.
4–20
Summary of Contents for SSL Scanner
Page 1: ...USER S GUIDE Webwasher SSL Scanner Version 6 5 www securecomputing com...
Page 20: ......
Page 108: ......
Page 160: ......
Page 167: ......