Installing Tls Certificates On The Skm; Server For Skm 2.4 (240Q) Or Later; Begin The Installation; Executing The Script Using The -D Option - Quantum Scalar i40 Quick Start Manual

Scalar key manager

Hide thumbs Also See for Scalar i40:

User manual (404 pages)

Quick start manual (18 pages)

Replacement manual (8 pages)

Table of Contents

Quantum Scalar Key Manager 2.5 Quick Start Guide

Installing TLS Certificates on the SKM Server for SKM 2.4

(240Q) or Later

Begin the Installation

Executing the Script

Using the -d Option

Beginning with SKM 2.4 (240Q), it is now possible to self-generate library/SKM TLS

communication certificates using SKM server with version 2.4 (240Q) or greater loaded.

This certificate-generation process generates sets of TLS certificates that can be loaded

onto the primary and secondary SKM servers and all libraries attached to the servers.

Note: The TLS certificate generation process must be run on only one of the SKM

servers, so there is no need to generate TLS Certificates on both SKM servers.

Either the Primary or Secondary SKM server can be used to generate the

certificates.

Specifically, the

genSKMcerts

ways to generate certificates:

• By executing the script using the "-d" option. Certificates are generated using a set

of default values similar to the certificates currently provided by Quantum.

• By executing the script

information used to generate the certificates must be provided.

1 SSH in to the SKM server. (If you have an SKM VM server, you can SSH in or continue

to use the vSphere console and proceed to

2 At the skmserver login prompt, type the login ID:

akmadmin

3 At the Password prompt, type your password.

A message displays alerting you that the SKM key server will be stopped.

4 Type

to agree to stop the SKM key server and continue.

A message appears stating the SKM key server is being stopped.

5 Do one of the following:

• To execute the script using the -d option, proceed with the steps in

the Script Using the -d Option

• To execute the script

Executing the Script Without Using the -d Option

Use the following procedure to generate certificates using the -d option, which uses

default values. The generated certificates are valid for ten years from the date on which

they were generated.

1 Once logged into the SKM server, execute

using the defaults.

Installing TLS Certificates on the SKM Server for SKM 2.4 (240Q) or Later

script is loaded onto the SKM servers using one of two

without

using the "-d" option. If the "-d" option is not used,

Step 4

on page 28.

without

using the -d option, proceed with the steps in

genSKMcerts –d

below.)

Executing

on page 31.

to generate certificates

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

Scalar i80 Scalar i500 Scalar i6000 Scalar i3 Scalar i6 Scalar i2000

Installing Tls Certificates On The Skm; Server For Skm 2.4 (240Q) Or Later; Begin The Installation; Executing The Script Using The -D Option - Quantum Scalar i40 Quick Start Manual

Begin the Installation

Hide quick links:

Related Manuals for Quantum Scalar i40

Related Content for Quantum Scalar i40

This manual is also suitable for:

Table of Contents