Secure Computing Soft-PK Version 5.1.3 Build 4 用户手册
Roadmap to deploying your VPNs
1-6
Getting Started
Figure 1-2. VPN
deployment
overview
Admin tasks
performed on
Sidewinder system
Admin tasks
performed using
Soft-PK prior to
deploying to end
users
1 — Satisfy Sidewinder, network, & system requirements
6 — Configure the certificates and security policy(ies) for your
remote users
remote users
2 — Plan your VPN configuration
3 — Enable appropriate Sidewinder servers, ACL entries, & proxies
4 — Set up VPN authentication on Sidewinder
If using pre-shared
keys (passwords):
keys (passwords):
If using CA-assigned
certificates:
certificates:
If using Sidewinder
self-signed certificates:
self-signed certificates:
4a1 — Create & export a
firewall certificate
firewall certificate
4a2 — Create & export
remote certificates
remote certificates
4a3 — Convert key file/
certificate pair to pkcs12
format
certificate pair to pkcs12
format
4b1 — Request/export
the CA root certificate
the CA root certificate
4b2 — Request a firewall
certificate
certificate
4b3 — Determine the
identifying information
(DN) your clients use
identifying information
(DN) your clients use
4b4 — Define remote
certificate identities
within Sidewinder
certificate identities
within Sidewinder
4c1 — Define remote
identities within
Sidewinder
identities within
Sidewinder
Important: Be sure
specify Extended
Authentication when
configuring your VPN
connection in Step 5
specify Extended
Authentication when
configuring your VPN
connection in Step 5
5 — Configure the VPN connections on the Sidewinder
8 — Troubleshoot any connection problems
7 — Prepare and deploy your Soft-PK installation package to
remote users
remote users