Applying the Certificate to the System or Webserver
You can use a valid certificate as the system certificate in the following cases:
CSR was generated in Nodegrid sent to a CA, signed, and uploaded again to the device.
CSR was generated in Nodegrid and self-signed.
A valid certificate is uploaded to the device bundled with its private key.
To apply a certificate on the system (webserver)
Log in to the Nodegrid Device.
Go to the Systems :: Certificates page
Select the required certificate
Click Apply as a System Certificate
Click Finish
You will be logged out of Nodegrid. Enter the credentials again and the new certificate will be applied to the system.
Applying the Certificate while creating an IPsec Tunnel
The certificate created in the Certificates tab can be used while creating an IPSec tunnel. IPsec on Nodegrid supports authentication using X.509 certificates, which is a more secure way to establish a tunnel and identify the systems participating in the tunnel.
To create an IPsec Tunnel using the Certificate:
Go to the Network:: IPsec :: Tunnel table.
Click the Add button
In the Authentication Method, select Certificate
select the Left and Right Certificates
The Local and Remote sections are populated once you upload the certificates:
Click Save.
The certificate is used to ensure secure authentication, encrypted data transfer, and trust between VPN endpoints.