Generating A Self-Signed Ssl Certificate For Testing Purposes; Configuring Apache To Point To An Ssl Certificate On An Ifolder Server - Novell IFOLDER 3.7 - ADMINISTRATION Administration Manual

Hide thumbs Also See for IFOLDER 3.7 - ADMINISTRATION:

Manual (23 pages)

Manual (136 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

Table of Contents

Whichever method you use, the certificate is automatically used for the Apache Web Server

configuration. If it does not automaticially configure the certificate for the Apache Web Server, see

the following:

Section F.3, "Configuring Apache to Point to an SSL Certificate on an iFolder Server," on

page 198

Section F.4, "Configuring Apache to Point to an SSL Certificate on a Shared Volume for an

iFolder Cluster," on page 199

F.2 Generating a Self-Signed SSL Certificate for

Testing Purposes

You can use theYaST CA Management plug-in or OpenSSL tools to create a self-signed certificate.

If iFolder is deployed in a trusted environment, use YaST. The YaST CA Management interface

contains modules for the basic management of X.509 certificates. This mainly involves the creation

of CAs, sub-CAs, and their certificates. For more information, see the following:

Section 6.6.2, "Creating a YaST-based CA," on page 79

Section 6.6.3, "Creating Self-Signed Certificates Using YaST," on page 81

Section 6.6.4, "Exporting Self-Signed Certificates," on page 83

For detailed information about how to manage and update certificates, see

Certification (http://www.novell.com/documentation/sles10/sles_admin/data/cha_yast_ca.html)

the

SUSE Linux Enterprise Server 10 Installation and Administration Guide (http://

www.novell.com/documentation/sles10/sles_admin/data/bookinfo_book_sles_admin.html).

For information about configuring Apache to point to the self-signed certificate, see the following:

Section F.3, "Configuring Apache to Point to an SSL Certificate on an iFolder Server," on

page 198

Section F.4, "Configuring Apache to Point to an SSL Certificate on a Shared Volume for an

iFolder Cluster," on page 199

F.3 Configuring Apache to Point to an SSL

Certificate on an iFolder Server

1 Get an SSL certificate from a trusted certificate authority.

2 Create a shared key directory. At a terminal console, enter

mkdir /etc/sharedkey/

Replace

3 Do either of the following:

Copy the private key (

location. At a terminal console, enter

cp ./filename.key /etc/sharedkey/

cp ./filename.cert /etc/sharedkey/

Replace

destination path with the shared key directory location where you want to store the

and

198 OES 2 SP1: Novell iFolder 3.7 Administration Guide

with the actual name of your key directory.

sharedkey

file) and the certificate (

.key

with the actual file name of your

filename

files.

.cert

Managing X.509

file) to the shared key directory

.cert

and

files. Replace the

.key

.cert

.key

Table of Contents

Generating A Self-Signed Ssl Certificate For Testing Purposes; Configuring Apache To Point To An Ssl Certificate On An Ifolder Server - Novell IFOLDER 3.7 - ADMINISTRATION Administration Manual

Related Manuals for Novell IFOLDER 3.7 - ADMINISTRATION

Related Content for Novell IFOLDER 3.7 - ADMINISTRATION

Table of Contents