From the authentication's point of view, device certificate authentication is basically Client Certificate Based Authentication (CBA).
Client Certificate Based Authentication is (CBA) is a mutual certificate based authentication, where the client provides its Client Certificate to the Server to prove its identity. A client certificate is issued by a certificate authority (CA). DualShield has a built-in Root CA and it will use its built-in CA to issue device certificates.
...
Import the Root CA
In the DualShield Admin ControlConsole, navigate to "Repository | Certificates | Certificate Authority"
...