HP NonStop SSL Reference Manual
SSLCOM Command Interface
•
97
not_valid_before=Feb 20 00:00:00 2004 GMT
not_valid_after=Feb 19 23:59:59 2005 GMT
md5=C7D442A51F7790721E3F36C383E58DF5
SSL handshake information:
==========================
2 SSL handshakes; First at 05Aug04,21:26:23, Last at 05Aug04,22:38:07
%
SSLINFO Command
The SSLCOM command SSLINFO will display the local certificate chain configured through the parameters
SERVCERT and CACERTS when HP NonStop SSL is running as an SSL server.
RELOAD CERTIFICATES Command
The SSLCOM command RELOAD CERTIFICATES allows the changing of the server certificate chain without having
to restart HP NonStop SSL. The command has two possible syntaxes:
1.
If used without an additional parameter, the command assumes the configuration parameters for the new
certificate chain (SERVCERT, SERVKEY, SERVKEYPASS, CACERTS) are present in the currently
configured CONFIG2 file. If no CONFIG2 file has been configured for startup, the command will fail.
2.
If used with an additional parameter containing the filename of a configuration file in double quotes, the new
values will be loaded from that file.
Some considerations for the command:
•
The success or failure of the command will be returned to SSLCOM. If the command fails, the prior certificate
chain will remain active.
•
HP NonStop SSL does some limited tests on the new certificate chain. However, some errors in the certificate
chain cannot be detected by merely loading the certificates. It is thus recommended to immediately check the
new certificate chain with the SSLINFO command as well as with creating a new client connection.
•
If the syntax 2 of the command is used and if the name of the config file in the command differs from the
startup CONFIG2 file, the changes will *not* be permanent unless the startup configuration of HP NonStop
SSL is updated with the changes. It is highly recommended to always keep the certificate chain information in a
CONFIG2 and to use syntax a) as in that case the changes *will* be permanent without further action.
Summary of Contents for NonStop SSL
Page 8: ...8 Preface HP NonStop SSL Reference Manual This is the initial version of this manual ...
Page 30: ...30 Installation HP NonStop SSL Reference Manual ...
Page 90: ...90 Monitoring HP NonStop SSL Reference Manual ...
Page 98: ...98 SSLCOM Command Interface HP NonStop SSL Reference Manual ...
Page 110: ...110 SSL Reference HP NonStop SSL Reference Manual ...
Page 116: ...116 Remote SSL Proxy HP NonStop SSL Reference Manual ...