SunScreen 3.1 Reference Manual

Associate MKID

Associate MKID, also called the certificate ID, assigns a name to a certificate that exists on another machine. Associate a certificate ID for encrypted communication between two screens or between a screen and an Administration Station. FIGURE 5-21 shows the Certificate dialog box for Associate MKID.

Figure 5-21 Certificate Dialog Box for Associate MKID

Graphic

TABLE 5-21 describes the controls for the Certificate dialog box for associate MKID.

Table 5-21 Controls for Associate MKID Certificate Dialog Box

Control 

Description 

Name 

Specifies the name for the certificate ID object.  

Description 

(Optional) Provides a brief description about the MKID or certificate ID object. 

Screen 

Specifies which Screen recognizes the certificate ID object. The default is All. Specifying a Screen allows you to define packet-filtering rules that encrypt traffic between any two machines, not just between an Administration Station and a Screen. Specify the Screen only if you are using Centralized Management. A common object or policy rule applies to all Screens unless you choose a specific Screen. 

Installed On 

(Optional) Used only if you later remove this certificate object from the common objects. At that time, the SKIP identity that is installed on the Screen will be removed from the parameter. 

Certificate ID 

Specifies the certificate ID (hash value) for the certificate that you generated on the other system. 

Radio Buttons 

Specifies the strength of encryption that the Screen uses.  

Generate New Certificate 

Generates the certificate. The Certificate ID field displays the certificate's certificate ID.  

OK Button 

Stores the new or changed information and makes the Save Changes command button active. 

Cancel Button 

Cancels any new or changed information. 

Help Button 

Calls up the page of online help for this common object.