HP e-Commerce / XML director server appliance sa8250 - Users Guide
A P P E N D I X B HP e-Commerce/XML Director Server Appliance SA8250 User Guide
288
Creating a new
Key/Certificate
on the SA8250
Use the policy manager key create and key create
certificate
commands to create new keys and certificates for
SA8250 operation. This procedure can be used when there are no
existing keys and certificates on the server. The advantage of this
method is that it is very fast, but a CA has not signed the certificates.
This means that users will have to explicitly accept the certificate the
first time they connect to your site.
NOTE: For optimal
security, one or more
fields must be modified to
make the DN unique.
The fields input as part of creating a certificate are called a
Distinguished Name (DN).
Procedure
1. To create a key, type this command:
HP SA8250#config policygroup <name> service
<name> key create [512 | 1024]
2. To create a certificate, type this command:
HP SA8250#config policygroup <name> service
<name> key create certificate <DN
parameters>
NOTE: Alternatively,
default DN parameters
can be specified using the
config ssl dn
command. This allows
recurring parameters to
be specified once and
then reused for multiple
certificates.
Where the optional DN parameters are shown in this table.
Parameter Description
life The number of days that the certificate remains
valid. The default is 30 days.
name The common (server) name
email Email address
state Your state or province
organization Your company name
unit Your organizational section
locality Your town or city
Optional DN Parameters