User's Guide

Overview

What It Is

What's New

Key Features List

ClearBox Enterprise vs ClearBox

System Requirements

Purchasing Licenses

Getting Started

Quick Start

Understanding Server Components

Managing User Accounts

Configuring RADIUS Realms

Realm Settings

Realm Rules

Dynamic Realm Rules

Authentication

Authentication Protocols Compatibility

Logging Authentication Packets

Logging Discarded Requests

Authorization

Accounting

Account Log Files

Realm Settings

Configuring SQL Queries

Private RADIUS Attributes

Regular Expressions Syntax

RADIUS Clients

RADIUS Client Settings

Dynamic Clients Settings

SQL Data Sources

SQL Data Source Settings

LDAP Servers

LDAP Server Settings

Remote RADIUS Servers

Remote RADIUS Server Settings

State Servers

State Server Settings

Meta Configuration

Meta Configuration

Meta Configuration Settings

Meta Base Schema

TLS Settings

Creating SSL Certificates

Creating Server Sertificate

Requesting Server Certificate

Creating Client Certificates

Revoking a Certificate or Renewing CRL

Exporting CA Certificate

Issuing a Certificate in Active Directory CA

Remote Configuration

Advanced ISP Billing Integration

DTH Billing Integration

Platypus Billing System Intergration

OnDO SIP Server Integration

How Do I...

Wi-Fi Security

Wireless Authentication

Wi-Fi and RADIUS

Supported EAP Authentication Types

Security Considerations

10 Tips for Wireless Network Security

Administering the Server

Logging

Debug Logs

Troubleshooting

Using Client Tool

List of Server Errors

Maintaining RADIUS Dictionary

Basic Concepts

AAA

Authentication

Wireless Authentication

Authentication Protocols

Authorization

Accounting

RADIUS

RADIUS

Realms

RADIUS Proxy

RADIUS Attributes

Example of RADIUS Packet Transactions

List of Standard RADIUS Attributes

Glossary

Technical Support

Purchasing Licenses

Contacts

ClearBox Enterprise Server 2.0 Online Manual

ClearBox Enterprise Server™ 2.0. User's Guide

Export CA Certificate

You have chosen to create your own certificate authority which issues your ClearBox server certificate. The server sends it to wireless clients during handshake when establishing a TLS secure channel. A client should be able to validate the server certificate in order to decide whether it trusts the server or not. So, besides verifying the certificate expiration date, it should see that the certificate was issued by some authority which the client trusts.

Initially, the client knows nothing about your own created CA, and will deny the server certificate. This may be solved by placing the CA certificate into the client's trusted root CAs store.

Run Certificates Wizard and select this step:

Specify where the root CA certificate will be saved:

Click Next. Now the certificate is exported. Deliver it on a client computer and run it:

Click Install Certificate. Click Next to install, Next to agree with the automatically selected certificate store, click Finish.

Security warning will be shown:

Answer Yes. Now the root certificate is installed, and the server certificate is trusted.

Converted from CHM to HTML with chm2web Pro 2.7 (unicode)