Applying the Certificate

Applying the Certificate to the System or Webserver

You can use a valid certificate as the system certificate in the following cases:

• CSR was generated in Nodegrid sent to a CA, signed, and uploaded again to the device.

• CSR was generated in Nodegrid and self-signed.

• A valid certificate is uploaded to the device bundled with its private key.

To apply a certificate on the system (webserver)

1. Log in to the Nodegrid Device.

2. Go to Systems :: Certificates.

3. Select the required certificate.

4. Click Apply as a System Certificate.

5. Click Finish.
   You will be logged out of Nodegrid. Enter the credentials again and the new certificate will be applied to the system.
   

   

Applying the Certificate while creating an IPsec Tunnel

The certificate created in the Certificates tab can be used while creating an IPSec tunnel. IPsec on Nodegrid supports authentication using X.509 certificates, which is a more secure way to establish a tunnel and identify the systems participating in the tunnel.

To create an IPsec Tunnel using the Certificate:

1. Go to Network:: IPsec :: Tunnel table.

2. Click the Add button.

3. In the Authentication Method, select Certificate. 

4. select the Left and Right Certificates.

5. The Local and Remote sections are populated once you upload the certificates:
   

   

6.  Click Save.

The certificate is used to ensure secure authentication, encrypted data transfer, and trust between VPN endpoints.