Use this tab to manage the personal certificates in the Reflection certificate store. Personal certificates are used for user (client) authentication.
An integral part of a PKI (Public Key Infrastructure). Digital certificates (also called X.509 certificates) are issued by a certificate authority (CA), which ensures the validity of the information in the certificate. Each certificate contains identifying information about the certificate owner, a copy of the certificate owner's public key (used for encrypting and decrypting messages and digital signatures), and a digital signature (generated by the CA based on the certificate contents). The digital signature is used by a recipient to verify that the certificate has not been tampered with and can be trusted.
The options are:
Add a certificate to the Reflection store. The imported file (typically a *.pfx or *.p12) must include a private key. Depending on how the file was created, you may be prompted for a password before you can import the file.
You will be prompted to enter a passphrase for to protect the private key in the Reflection store. If you specify a passphrase, you'll be prompted for this passphrase when this certificate is used to authenticate to a host.
A passphrase is similar to a password, except it can be a phrase with a series of words, punctuation, numbers, white space, or any string of characters. Passphrases improve security by limiting access to secure objects, such as private keys and/or a key agent.
Remove the selected certificate from the Reflection store.
View the selected certificate.
Change the passphrase for the selected certificate.