Manualshelf

Nonstop Volume Level Encryption Guide

ManualsBrandsHP ManualsServerHP Integrity NonStop H-Series
31323334353637383940
Enter pass phrase for /tmp/zencrypt/client.key:passphrase
writing RSA key
Termination Info: 0
$SYSTEM ZENCRYPT 7>
e. Use the CLIMCMD OpenSSL command to convert the PEM formatted NSSuser private key into
a DER formatted private key. You will be asked to enter the passphrase that you used to create
the private key. Enter this command, all on one line::
$SYSTEM ZENCRYPT 7> climcmd c100231 openssl pkcs8 -topk8 -in
/tmp/zencrypt/client.key.pem -outform DER -out /tmp/zencrypt/client.key.der
comForte SSH client version T9999H06_05Aug2009_comForte_SSH_0086b
Enter Encryption Password: passphrase
Verifying - Enter Encryption Password: passphrase
Termination Info: 0
$SYSTEM ZENCRYPT 8>
f. Use the CLIMCMD cat command to display the client certificate request:
$SYSTEM ZENCRYPT 8> climcmd c100231 cat /tmp/zencrypt/client.csr
The system responds:
comForte SSH client version T9999H06_05Aug2009_comForte_SSH_0086b
-----BEGIN CERTIFICATE REQUEST-----
MIICwzCCAasCAQAwfjELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAkNBMRIwEAYDVQQH
EwlDdXBlcnRpbm8xCzAJBgNVBAoTAkhQMQwwCgYDVQQLEwNORUQxEDAOBgNVBAMT
B05TU3VzZXIxITAfBgkqhkiG9w0BCQEWEm1hcmMucGFsb21hQGhwLmNvbTCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKLFhBMpa0PyyPTMpG8DGqJn97GH
l/XGvDOJy6JiHbLAu9/F6Z7LmLIBtdCI3AXcbuX+0T3xnQv2eA+woevy/ddKNGDH
hhGI/q2Drix23kZCTfGk2GvTY/cFrpyAgBAzXyzPXqJRFADAu2N/GJrGAfYgX49n
WRJ9+dy2+HKUxsRKUFYQ8aZt2B/ySfqLwttAELm+nCqYgYl2HA+JYluLBI7F7ntX
ZqQQvlvf0eX7oflnHIlZTDgF0LXhUkpoprCrN7VJr/SMjOKQmtUa2wszEKOxbTr1
6beoDMRA3Xp5luCGVtG9Ez/QuBAjVhMfUDFvfnq0P4C6FnataajjH7w4PNsCAwEA
AaAAMA0GCSqGSIb3DQEBBQUAA4IBAQAWroF7LGsW2PpAoX3smbtQQEyV1nQusFyb
s7kTCb6vAYkantN8u0EjZ88GX+b3NcsmohhH5nyeA2oMG50coZSrft4hOFzCh+MN
n5REnSsv9gV0m/8vlWN/cnlpFa4zg2HpHmt91O1vGM1iahVLbyiEZeYdobrrjY+C
TJesDbYp78lkv9J+fWPfvyd3DSLJmjUZHDmgCmO42n0AmXcilk79WEe/a/WMXRid
e9Sk3UHafo3in5Hcjd3sp5cDqjt00sAWYFx0dcj7Pta0ZpxpE/H4B11FobEr4d/m
hNf8EpSBBte5z/PxYdY5uF4nblTqEFD/ghQi5xRP0kSSWM0pBZOu
-----END CERTIFICATE REQUEST-----
Termination Info: 0
$SYSTEM ZENCRYPT 9>
g. Select and copy the client certificate request text from -----BEGIN CERTIFICATE REQUEST-----
through -----END CERTIFICATE REQUEST-----.
h. Sign the NSSuser client certificate request with the local CA NSVLECA:
1) Log onto the Secure Key Manager GUI as admin. On the Security tab, select Local CAs.
2) Select the trusted local CA NSVLECA and click Sign Request:
Installation steps 35