Home » HP Manuals » Servers » HP Integrity rx2800 » Manual Viewer

HP Integrity rx2800 System Management Homepage User Guide - Page 40

Local Server Certificate Category, Apply, Settings, Remove

View all HP Integrity rx2800 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 40 highlights

6. Click Add to add the configurations. 7. Click Apply to apply the configurations. To remove IP addresses from the list: 1. Select Settings from the menu. 2. In the System Management Homepage box, click the Security link. 3. Click the IP Restricted Login link. 4. Select the check box beside the IP addresses you want to remove. 5. Click Remove. 6. Click Apply to apply the configurations. Local Server Certificate Category The Local Server Certificate link enables you to use certificates that are not generated by HP. 1 Organization (O) 4 Create 7 Alternative Names The name of the organization. Create the certificate request. Valid server name list. 2 Organizational Unit (OU). 5 PKCS #7 Information 8 Create The name of the unit within the PKCS #7 fields filled. organization requesting the certificate. 3 Alternative Name 6 Import Import the signed certificate. Re-create the certificate adding the given alternative names. If you use the following process, the self-signed certificate that was generated by the HP SMH is replaced with one issued by a certificate authority (CA). • The first step of the process is to cause the HP SMH to create a Certificate Request (PKCS #10). This request uses the original private key associated with the self-signed certificate and generates data for the certificate request. The private key never leaves the server during this process. • After the Public Key Infrastructure PKCS #10 data is created, the next step is to send it to a certificate authority. Follow your company policies for sending secure requests for and receiving secure certificates. • After the certificate authority returns the PKCS #7 data, the final step is to import this into HP SMH. • After the PKCS #7 data is imported, the original \hp\sslshare\cert.pem certificate file for Windows, /opt/hpsmh/sslshare/cert.pem file for HP-UX, and /opt/hp/sslshare/cert.pem (/etc/opt/hp/sslshare/cert.pem in HP SMH 2.1.3 and later on Linux x86 and x86-64) is overwritten with the system certificate from the PKCS #7 data envelope. The same private key is used 40 The Settings Page

Section	Page
HP System Management Homepage 6.0 User Guide	1
Table of Contents	3
1 Introduction	9
Product features	9
HP SIM	9
Integrated Management Tools	9
HP-UX System Administration Manager (SAM) Deprecation	9
Supported operating systems	10
Supported browsers	11
Obtaining HP SMH software	12
HP media	12
HP websites	12
2 Getting Started	13
Signing in	13
Starting HP System Management Homepage (HP SMH) from Internet Explorer	14
Starting HP SMH from Mozilla or Firefox	15
Starting HP SMH from HP SIM	16
Starting from the HP-UX Command Line	16
HP SMH Management Server	16
Configuring Firewall Settings	17
Windows	17
Linux	17
Red Hat Enterprise Linux 4 and 5	17
SUSE Linux Enterprise Server	18
Configuring Timeout Settings for HP-UX	19
Configuring SMH Service Timeout	19
Configuring SMH Session Timeout	19
Automatically Importing Certificates	20
Signing Out	20
3 Scenarios	23
IP Binding	23
IP Restricted Login	23
Local Server Certificate	23
Port 2301	23
Kerberos Authentication	23
User Groups	23
Alternative Names	23
4 Navigating the Software	25
Information Areas	26
Icon View	28
HP SMH Pages	30
5 The Home Page	31
Overall Status Summary	31
System Status	31
Default HP-UX Property Pages	31
System	31
Operating System	32
Network	32
Software	32
Storage	32
SysMgmtPlus	32
6 The Settings Page	33
SNMP Webagent Box	33
SMH Data Source Category	33
SNMP Configuration Category	33
UI Options Category	33
System Management Homepage Box	34
UI Properties Category	34
User Preferences Category	35
Security	36
Anonymous/Local Access Category	36
IP Binding Category	38
IP Restricted Login Category	39
Local Server Certificate Category	40
Port 2301 Category	41
Timeouts Category	42
Session Timeout	43
UI Timeout	43
Trust Mode Category	44
Configuring Trust Mode	47
Trusted Management Servers Category	48
Kerberos Authentication Category	51
Kerberos Authentication Procedure	51
HP SMH Kerberos Authentication	52
Kerberos Administrator	52
Kerberos Operator	53
Kerberos User	53
User Groups Category	54
Administrator Group	55
Operator Group	56
User Group	56
Alternative Names Certificates	57
Menus (HP-UX Only)	57
Add Custom Menu (HP-UX Only)	57
Remove Custom Menu (HP-UX Only)	58
7 The Tasks Page	59
8 The Tools Page (HP-UX Only)	61
9 The Logs Page	63
System Management Homepage Log	63
SAM Log	63
Httpd Error Log	63
Supported Languages	64
10 The Installed Webapps Page	67
11 The Support Page	69
The Help Page	69
Search Form	70
Credits	70
12 Command Line Interface Configuration	71
Command Line Interface Configuration	71
Anonymous Access	71
Local Access	71
IP Restricted Logins	71
IP Binding	72
Trust Modes	72
Restart service	73
Reject Program Admin Login	73
Win32DisableAcceptEX	73
Enable/disable SSL v2	73
Log Rotations	73
Rotate Log Size	73
Maximum Number of Threads Allowed	73
Maximum Number of Sessions	74
Session Timeout	74
Log Level	74
Port 2301	74
Multihomed certificate alternative names list	74
Custom UI	75
Httpd Error Log	75
Icon View	75
Box Order	75
Box Item Order	75
Kerberos Authentication	75
User Groups	76
Help message	76
File Based Command Line Interface	76
Command Line Log Reader	77
13 Troubleshooting	79
Troubleshooting	79
Support	86
Service and Support	86
Support and other resources	89
Intended Audience	89
Publishing History	89
Typographic Conventions	89
Related Documents	90
HP SMH documentation	90
HP Encourages Your Comments	90
A HP SMH file locations	91
File locations	91
B HP SMH Ciphers	93
Ciphers used in HP SMH	93
Glossary	95

Match case Limit results 1 per page

Click

Add

to add the configurations.

Click

Apply

to apply the configurations.

To remove IP addresses from the list:

Select

Settings

from the menu.

In the

System Management Homepage

box, click the

Security

link.

Click the

IP Restricted Login

link.

Select the check box beside the IP addresses you want to remove.

Click

Remove

Click

Apply

to apply the configurations.

Local Server Certificate Category

The

Local Server Certificate

link enables you to use

certificates

that are not generated by HP.

Alternative Names

Valid server name list.

Create

Create the certificate request.

Organization (O)

The name of the organization.

Organizational Unit (OU)

The name of the unit within the

organization requesting the

certificate.

Create

Re-create the certificate adding the

given alternative names.

PKCS #7 Information

PKCS #7 fields filled.

Import

Import the signed certificate.

Alternative Name

If you use the following process, the

self-signed certificate

that was generated by the HP SMH is replaced

with one issued by a

certificate authority

(CA).

•

The first step of the process is to cause the HP SMH to create a

Certificate Request (PKCS #10)

. This

request uses the original private key associated with the self-signed certificate and generates data for

the certificate request. The private key never leaves the server during this process.

•

After the Public Key Infrastructure

PKCS #10

data is created, the next step is to send it to a certificate

authority. Follow your company policies for sending secure requests for and receiving secure certificates.

•

After the certificate authority returns the

PKCS #7

data, the final step is to import this into HP SMH.

•

After the

PKCS #7

data is imported, the original

\hp\sslshare\cert.pem

certificate file for Windows,

/opt/hpsmh/sslshare/cert.pem

file for HP-UX, and

/opt/hp/sslshare/cert.pem

(

/etc/opt/hp/sslshare/cert.pem

in HP SMH 2.1.3 and later on Linux x86 and x86-64) is

overwritten with the system certificate from the

PKCS #7

data envelope. The same private key is used

The Settings Page