Can someone give me a brief explanation of certificates as they apply to VPN connections.
Our new firewall supports SSL VPN, and we are trying to set it up in the most secure way possible.
I would like a setup where each laptop has a certificate that is unique to that hardware, so I can control that only approved hardware, in conjunction with proper credentials, can connect.
Documentation suggests that is done with client certificates that verify with a certificate authority, and that certificate authority could be the firewall itself or a local windows server if i understand this correctly, all research i have done confuses me more, so please help me out with the basics from PKIs to OCSPs to whatever else i need
thanks.