HP Integrity rx2800 System Management Homepage User Guide - Page 41

Port 2301 Category, Settings, Create, Import

Get HP Integrity rx2800 - i2 PDF manuals and user guides View all HP Integrity rx2800 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 41 highlights

for the new imported certificate that was used with the previous self-signed certificate. This private key is randomly generated at startup when no key file exists. To create a certificate: 1. Select Settings from the menu. 2. In the System Management Homepage box, click the Security link. 3. Click the Local Server Certificate link. 4. Replace the default values in the Organization or Organizational Unit fields in the Create PKCS #10 Data box with your values, up to 64 characters. If not specified, they are filled in with Hewlett-Packard Company for the Organization and Hewlett-Packard Network Management Software (SMH) for the Organizational Unit. 5. Click Create in the Create PKCS #10 Data box. A screen appears indicating that the PKCS #10 Certificate Request data has been generated and stored in /opt/hpsmh/sslshare/req_cr.pem for HP-UX, /etc/opt/hp/sslshare/req_cr.pem on Linux x86 and x64, and systemdrive: \hp\sslshare\req_cr.pem for Windows. 6. Copy the certificate data. 7. Use a secure method to send PKCS #10 certificate request data to a certificate authority, request the certificate request reply data in PKCS #7 format, and request that the reply data is in Base64-encoded format. If your organization has its own Public Key Infrastructure (PKI) or Certificate Server implemented, send the PKCS #10 data to the CA manager and request the PKCS #7 reply data. NOTE: A third-party certificate signer generally charges a fee. 8. When the certificate signer sends the PKCS #7 encoded certificate request reply data to you, copy this data from the PKCS #7 certificate request reply and paste it into the PKCS #7 information field in the Import PKCS #7 Data box. 9. Click Import. A message appears indicating whether the customer-generated certificate was imported. 10. Restart HP SMH. 11. Browse to the managed system that contains the imported certificate. 12. When prompted by the browser, select to view the certificate and verify that signer is listed as the signer you used, and not HP, before importing the certificate into your browser. If the certificate signer you choose sends you a certificate file in Base64-encoded form instead of PKCS #7 data, copy the Base64-encoded certificate file to /opt/hpsmh/sslshare/cert.pem for HP-UX, /etc/opt/hp/sslshare/cert.pem on Linux x86 and x64, and systemdrive:\hp\sslshare\cert.pem for Windows; then restart HP SMH. Port 2301 Category The Port 2301 link provides options to enable or disable Port 2301. The default value, enabled, preserves the compatibility with HP Web-enabled System Management Software. System Management Homepage Box 41

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
for the new imported certificate that was used with the previous self-signed certificate. This private key
is randomly generated at startup when no key file exists.
To create a certificate:
1.
Select
Settings
from the menu.
2.
In the
System Management Homepage
box, click the
Security
link.
3.
Click the
Local Server Certificate
link.
4.
Replace the default values in the
Organization
or
Organizational Unit
fields in the
Create PKCS #10
Data
box with your values, up to 64 characters.
If not specified, they are filled in with
Hewlett-Packard Company
for the
Organization
and
Hewlett-Packard Network Management Software (SMH)
for the
Organizational Unit
.
5.
Click
Create
in the
Create PKCS #10 Data
box.
A screen appears indicating that the
PKCS #10 Certificate Request
data has been generated and stored
in
/opt/hpsmh/sslshare/req_cr.pem
for HP-UX,
/etc/opt/hp/sslshare/req_cr.pem
on
Linux x86 and x64, and
systemdrive:
\hp\sslshare\req_cr.pem
for Windows.
6.
Copy the certificate data.
7.
Use a secure method to send
PKCS #10
certificate request data to a certificate authority, request the
certificate request reply data in
PKCS #7
format, and request that the reply data is in Base64-encoded
format.
If your organization has its own Public Key Infrastructure (PKI) or Certificate Server implemented, send
the
PKCS #10
data to the CA manager and request the
PKCS #7
reply data.
NOTE:
A third-party certificate signer generally charges a fee.
8.
When the certificate signer sends the
PKCS #7
encoded certificate request reply data to you, copy this
data from the
PKCS #7
certificate request reply and paste it into the
PKCS #7 information
field in the
Import PKCS #7 Data
box.
9.
Click
Import
.
A message appears indicating whether the customer-generated certificate was imported.
10. Restart HP SMH.
11.
Browse to the managed system that contains the imported certificate.
12.
When prompted by the browser, select to view the certificate and verify that signer is listed as the signer
you used, and not HP, before importing the certificate into your browser.
If the certificate signer you choose sends you a certificate file in Base64-encoded form instead of
PKCS
#7
data, copy the Base64-encoded certificate file to
/opt/hpsmh/sslshare/cert.pem
for HP-UX,
/etc/opt/hp/sslshare/cert.pem
on Linux x86 and x64, and
systemdrive
:\hp\sslshare\cert.pem
for Windows; then restart HP SMH.
Port 2301 Category
The
Port 2301
link provides options to enable or disable
Port 2301
. The default value, enabled, preserves
the compatibility with
HP Web-enabled System Management Software
.
System Management Homepage Box
41