Additional Trust CA

The Settings Additional Trust CA Screen displays information about all Additional Trust CA certificates and is used to add, trust, and delete a certificate in the UPAM RADIUS Server for client authentication and/or AP as an 802.1X client authentication. You can also download an imported certificate to your computer.

Adding a Certificate

There is a "Built-in_CA" certificate file that is available to use by default and appears in the list of certificates on the Additional Trust CA Screen. However, if you want to add your own custom certificate file, complete the following steps to add the file to the UPAM RADIUS Server:

1. Click on the Add icon to bring up the Create Additional Trust CA Screen.

2. Click on the Upload button to upload a CA File, then click on the Import button to import the file into UPAM.

3. Enter a Name for the Certificate, then click on the Create button. The certificate is now available and appears in the list of certificates on the Additional Trust CA Screen.

Note: When using the "Built_in_CA" certificate file or a custom certificate file for AP as an 802.1X client authentication, make sure the AP Group to which the AP 802.1x client belongs has the 802.1x Supplicant option enabled and specifies the same certificate file.

Trust a Certificate

The "Built_in_CA" certificate file is trusted by default. However, custom certificate files are untrusted by default. To trust a custom certificate, select the custom certificate in the Additional Trust CA List and click on the Trust button. The Result Screen displays the results of the trust operation. Click the OK button to close the Result Screen and return to the Additional Trust CA List.

Deleting a Certificate

Select a certificate in the Additional Trust CA List and click on the Delete icon. Click OK at the Confirmation Prompt. Note that you cannot delete the "Built_in_CA" certificate or a trusted custom certificate. You must first untrust a custom certificate before you can delete it.

Downloading a Certificate

You can download an imported certificate from the Additional Trust CA List to your machine. Select the certificate in the list and click on the Download button. The certificate will be downloaded to your designated Download folder.

Additional Trust CA List

The Additional Trust CA List displays information about all of the imported Trust Certificates.

• Name - Identifier for the certificate in UPAM.
• CA File Name - The name of the uploaded CA Certificate file.
• Issued By - The certification authority (CA) that issued the certificate.
• Issued To - The entity to which the certificate is assigned.
• Validity Start Time - The start date and time when the certificate is valid.
• Validity Stop Time - The end date and time when the certificate is valid.
• Status - Indicates the trust status for the certificate (Trust or UnTrust).