System Administration
Creating and Replacing SSL Certificates
15-28
<CA_alias>
is an alias unique to your cacerts file and preferably identifies
the CA to which it pertains
<ca_root_cert_file>
is the file containing the CA's root certificate
8.
keytool
prompts for the password for the cacerts file, which should be
the default:
changeit
.
9.
If you are prompted, enter
yes
to trust the certificate.
Using an SSL Certificate from a known Certificate
Authority (CA)
To generate a Certificate Signing Request (CSR) to be submitted to a Certifi-
cate Authority (CA), first create a new self-signed certificate following the
instructions in the previous section, then continue as follows:
1.
Log in as
root
to the NAC 800 server via SSH.
2.
Enter the following at the command line:
keytool -certreq -alias
<key_alias>
-keyalg RSA -file
<csr_filename>
-keystore
/
usr/local/nac/keystore/compliance.keystore
Where:
<key_alias>
is the name for the key within the keystore file
<csr_filename>
is the name of the file to store the certificate request
3.
keytool
prompted for the password for the
<keystore_filename>
file,
which is the password used when the keystore was created.
4.
Submit the CSR (see “Copying Files” on page 1-20) to your chosen CA
(such as Thawte or Verisign) along with anything else they might require:
http://www.verisign.com/
http://www.thawte.com/
5.
If you are using a non-traditional CA (such as your own private Certificate
Authority/Public Key Infrastructure (CA/PKI), or if you are using a less
well-known CA, you will need to import the CA’s root certificates into the
java cacerts file by entering the following command on the command line
of the NAC 800 server:
Содержание 800 Series
Страница 1: ...Users Guide www procurve com ProCurve Network Access Controller 800 ...
Страница 2: ......
Страница 3: ...ProCurve Network Access Controller 800 Release 1 1 Users Guide ...
Страница 32: ...Introduction Technical Support 1 14 Technical Support Technical support is available through www procurve com ...
Страница 43: ...2 1 2 Clusters and Servers Chapter Contents Overview 2 2 Installation Examples 2 3 ...
Страница 70: ...System Configuration Management Server 3 22 Figure 3 9 System Configuration Management Server ...
Страница 79: ...System Configuration User Accounts 3 31 Figure 3 12 System Configuration User Accounts ...
Страница 87: ...System Configuration User Roles 3 39 Figure 3 16 System Configuration User Roles ...
Страница 170: ...System Configuration Cluster Setting Defaults 3 122 Figure 3 55 System Configuration Agentless Credentials ...
Страница 206: ... This page intentionally left blank ...
Страница 229: ...End user Access Mac OS X Endpoint Settings 5 23 Figure 5 8 Mac System Preferences ...
Страница 262: ... This page intentionally left blank ...
Страница 284: ... This page intentionally left blank ...
Страница 298: ... This page intentionally left blank ...
Страница 299: ...8 1 8 High Availability and Load Balancing Chapter Contents High Availability 8 2 Load Balancing 8 6 ...
Страница 302: ...High Availability and Load Balancing High Availability 8 4 Figure 8 2 DHCP Installation ...
Страница 303: ...High Availability and Load Balancing High Availability 8 5 Figure 8 3 802 1X Installation ...
Страница 305: ...9 1 9 Inline Quarantine Method Chapter Contents Inline 9 2 ...
Страница 308: ... This page intentionally left blank ...
Страница 311: ...DHCP Quarantine Method Overview 10 3 Figure 10 1 DHCP Installation ...
Страница 314: ... This page intentionally left blank ...
Страница 319: ...802 1X Quarantine Method NAC 800 and 802 1X 11 5 Figure 11 2 NAC 800 802 1X Enforcement ...
Страница 320: ...802 1X Quarantine Method NAC 800 and 802 1X 11 6 Figure 11 3 802 1X Communications ...
Страница 376: ... This page intentionally left blank ...
Страница 414: ... This page intentionally left blank ...
Страница 421: ...Reports Viewing Report Details 14 7 Figure 14 3 Test Details Report ...
Страница 474: ... This page intentionally left blank ...
Страница 520: ...Tests Help Security Settings Windows B 34 http www pcworld com article id 112138 article html ...
Страница 526: ... This page intentionally left blank ...
Страница 529: ...Important Browser Settings Pop up Windows C 3 1 Clear the Block Popup Windows check box 2 Close the Content window ...
Страница 556: ... This page intentionally left blank ...
Страница 584: ... This page intentionally left blank ...
Страница 585: ......
Страница 586: ... Copyright 2007 2008 Hewlett Packard Development Company L P June 2008 Manual Part Number 5991 8571 ...