iX 6.5)

ManualsBrandsHP ManualsSoftwareMPE/iX 6.0 Operating System

171

172

173

174

175

176

177

178

179

180

Chapter 10 177

HP WebWise MPE/iX Secure Web Server

Server Keys and Certiﬁcates

CA:TRUE

Signature Algorithm: md5WithRSAEncryption

a7:3d:21:6a:b8:bf:f2:67:01:81:e6:05:56:89:8a:21:ab:bf:

d5:43:48:ad:06:af:51:66:2a:02:77:ba:30:41:57:26:a5:7c:

eb:00:a0:77:bf:b8:2b:03:91:59:92:1c:0b:8d:fc:16:27:c1:

75:d3:90:1c:fd:de:9b:21:e1:34:27:2c:1c:4c:36:9c:7a:5f:

16:bf:df:66:85:43:35:9e:b2:e8:2d:04:08:af:b1:60:84:3f:

3e:5f:67:2b:38:75:38:2d:58:28:36:a2:56:19:fb:b3:66:d2:

fd:8e:b9:30:02:5d:43:f9:57:bb:1f:b9:40:5d:32:b3:c0:4c:

ba:dd

6. $ chmod 400 ca.key ca.crt

Then sign your CSR with your CA certiﬁcate and move all ﬁles to their correct secure

locations:

1. $ sign.sh ../ssl.csr/server.csr

CA signing: ../ssl.csr/server.csr -> ../ssl.csr/server.crt:

Using configuration from ca.config

Enter PEM pass phrase:********

Check that the request matches the signature

Signature ok

The Subjects Distinguished Name is as follows

countryName :PRINTABLE:'US'

stateOrProvinceName :PRINTABLE:'My State'

localityName :PRINTABLE:'My City'

organizationName :PRINTABLE:'My Company'

organizationalUnitName:PRINTABLE:'My Org'

commonName :PRINTABLE:'www.mycompany.com'

emailAddress :IA5STRING:'webmaster@www.mycompany.com'

Certificate is to be certified until Apr 13 18:36:41 2001 GMT (365 days)

Sign the certificate? [y/n]:y

1 out of 1 certificate requests certified, commit? [y/n]y

Write out database with 1 new entries

Data Base Updated

CA verifying: ../ssl.csr/server.crt <- CA cert

../ssl.csr/server.crt: OK

2. $ rm -fR ca.db.*

3. $ cd ..

4. $ mv ssl.csr/server.crt ssl.crt/server.crt

5. $ openssl x509 -noout -text -in ssl.crt/server.crt (displays the details of

your newly created self-signed server certiﬁcate)

Certificate:

Data:

Version: 1 (0x0)

Serial Number: 1 (0x1)

Signature Algorithm: md5WithRSAEncryption

Issuer: C=US, ST=My State, L=My City, O=My Company, OU=My Company

CA, CN=Certificate Authority/Email=ca@mycompany.com

Validity

Not Before: Apr 13 18:36:41 2000 GMT

Not After : Apr 13 18:36:41 2001 GMT

Subject: C=US, ST=My State, L=My City, O=My Company, OU=My Org,

CN=www.mycompany.com/Email=webmaster@www.mycompany.com