Using An Ssl Certificate From A Known Certificate Authority (Ca) - HP ProCurve NAC 800 User Manual
Hide thumbs
Also See for ProCurve NAC 800:
- User manual (560 pages) ,
- User manual (586 pages) ,
- User manual (474 pages)
Table of Contents
Advertisement
<key_alias> -keystore
/usr/local/nac/keystore/compliance.keystore
b. Import the key root certificates by entering the following command
on the command line of the NAC 800 server:
keytool -import -file /tmp/cacerts -alias
<key_alias> -keystore
/usr/local/nac/keystore/cacerts
c.
keytool prompts for the password of the cacerts file, that should be
the default:
changeit.
d. If you are prompted, enter yes to trust the certificate.
e.
Restart the nac-ms (or nac-es) service.
Using an SSL Certificate from a known Certificate
Authority (CA)
To generate a Certificate Signing Request (CSR) to be submitted to a Certifi-
cate Authority (CA), first create a new self-signed certificate following the
instructions in the previous section, then continue as follows:
1.
Log in as root to the NAC 800 server via SSH.
2.
Enter the following at the command line:
keytool -certreq -alias
usr/local/nac/keystore/compliance.keystore
Where:
<key_alias> is the name for the key within the keystore file
<csr_filename> is the name of the file to store the certificate request
3.
keytool prompted for the password for the <keystore_filename> file,
which is the password used when the keystore was created.
Creating and Replacing SSL Certificates
<key_alias>
-keyalg RSA -file
System Administration
<csr_filename>
-keystore
15-29
/
Advertisement
Table of Contents
