Preparing the Gateway Fingerprint

Before users define a site that leads to the Security Gateway, prepare the fingerprint of the Security Gateway.

Users may get a warning that the client cannot identify the Security Gateway and that they should verify the fingerprint.

Give the users the fingerprint to compare with their client installation and site definition.

The Security Gateway Fingerprint can be prepared using either SmartConsole or the legacy SmartDashboard interface.

To prepare the Security Gateway Fingerprint from SmartConsole:

1. Open SmartConsole.

2. From the Objects dropdown, click More object types > Server > New Trusted CA.

3. In the Certificate Authority Properties window, select the OPSEC PKI tab.

4. In the Certificate field, click View to display the certificate details, and copy the SHA Fingerprint.

(Optional) To prepare the Security Gateway fingerprint from the legacy SmartDashboard:

1. In SmartConsole, click Manage menu > Servers and OPSEC Applications.

2. In the Servers and OPSEC Applications window, select the Certificate Authority and click Edit.

3. Open the Local Security Management Server or OPSEC PKI tab and click View.

4. In the Certificate Authority Certificate View window, copy the SHA Fingerprint.

5. Send the fingerprint to users before they install the client.

To open the legacy SmartDashboard from SmartConsole:

1. In SmartConsole, go to the Security Policies view.

2. Under Shared Policies, click Mobile Access or DLP.

3. Click Open Policy in SmartConsole.