Chapter 2 Configuring servers 65Nortel VPN Router Security — Servers, Authentication, and Certificates• (RSA_EXPORT_WITH_DES40_CBC_SHA, 0x08)To use SSL Administration, you must:• Enable HTTPS services for the public and/or private interface on the Services> Available window.• Explicitly allow HTTPS if tunnel filters are enabled on the Profiles > Filterswindow for management through a VPN tunnel.• Install a valid server certificate on the VPN Router and applied to the SSL/TLS services to authenticate and validate SSL connections.• Select ciphers and apply the server certificate on the Services > SSL/TLSwindow.• Have an SSL-enabled Web browser.• Have a valid administrator user name and password.Browser security checksWhen using certificates, Netscape Communicator and Internet Explorer performdifferent security checks. The following configuration is recommended to obtainthe best performance when administering the VPN Router securely using SSLadministration.1 Make an entry in the hosts file corresponding to your VPN Routermanagement IP address, such as 11.0.0.12 VPNRouter1.2 Import the root certificate that issued your VPN Router server certificate intothe browser store as follows:• For Netscape Communicator to accept the mime type application/x-x509-ca-cert:a Select Edit > Preferences.b Click Applications.c Click New Type.A new window appears.d Fill in the following information in the new window:— Description of type—CAcert