Table of Contents
Advertisement
https Administration (Continued)
TABLE 2-15
Item
Description
External
When the external CA and CA in Intranet are
authentication
used, set the following.
• Create a web server private key of XSCF
• Make the Certificate Signing Request (CSR)
by XSCF and Request the issue of the
certificate to CA.
• Import a web server certificate to XSCF.
Self
Automatically, the self CA is constructed in
authentication
XSCF and the certificate is installed.
The following are set.
• A self CA is constructed
• A private key is made
• A web server certificate self-signed is made
Display the
Displays the following:
certificate
• CSR
• Web server certificate
To enable the https, an XSCF reset is required. Please reset the XSCF using by
rebootxscf(8) command. After the XSCF reset, the XSCF session is disconnected.
Please log in again to the XSCF. The https settings are automatically applied to the
standby XSCF Unit for a system with a redundant XSCF configuration.
When the expiration date of the web server certificate has passed, or you change the
web server certificate, configure the https settings again.
Shell Command
Remarks
Specify the following
sethttps
Distinguished Name for
making a CSR.
• Country (2 letter: Ex.US,
JP), Province, Locality,
Organization,
Organizational unit,
Common name (Your name
or web server host name),
email address of
administrator
• Each value, except for
Country, must consist of up
to 64 characters.
For details of DN, see the
sethttps(8) man page, or
the XSCF Reference Manual.
Specify the same DN as the
sethttps
External authentication at
making a web server
certificate.
The certificate expiration of
showhttps
the self-CA is as follows:
• Server certificate: 10 year
The set value becomes
effective, when the certificate
will be created next time.
Chapter 2
Setting Up XSCF 2-115
Advertisement
Table of Contents
