Click the Certificate profile tab to configure the policies and the limits imposed on certificate requests applied by the CA.
NOTE: This tab is only visible if the Certificate Signing plugin is installed on your
system.
- Allowed domain name
- Must match your network domain name. Leave it blank if you do not want to include the domain name in the certificates.
- Allowed IPv4 range
- Enter the IPv4 range of the units you expect to connect to on your network. Leave it
blank if you do not want the units to use IPv4.
The IP range must follow the CIDR convention. All units must be found within this range of IP addresses. We do not support discrete ranges of IP addresses.
- Allowed IPv6 range
- Enter the IPv6 range of the units you expect to connect to on your network. Leave it
blank if you do not want the units to use IPv6.
The IP range must follow the CIDR convention. All units must be found within this range of IP addresses. We do not support discrete ranges of IP addresses.
- Validity period
- Specify, in days or months, the validity period of the renewed certificates according to your security policies. We recommend a period between six months and one year.