iTP Secure WebServer System Administrator's Guide (iTPWebSvr 6.0+)

ManualsBrandsHP ManualsServerHP NonStop G-Series

111

112

113

114

115

116

117

118

119

120

Integrating the WebSafe2 Internet Security

Processor (WISP)

iTP Secure WebServer System Administrator’s Guide—523346-002

5-8

Configuring the iTP Secure WebServer for

WebSafe2 Internet Security Processors (WISPs)

Example 5-1 contains an example of a running install.WS script:

Example 5-1. Sample WebSafe2 install.WS Script

#: cd /usr/tandem/webserver/admin/conf

#: install.WS -websafe

This script installs WebSafe configuration files and sets up iTP

Webserver for WebSafe crypto. To revert to software crypto,

simply remove the file httpd.websafe.config in this directory

and restart the server.

Copying files...please wait

Looking up running TCP/IP processes on your system...please wait

Enter a space separated list of TCP/IP processes which the iTP

WebServer will use. The process name must be entered in OSS

format. Default: /G/ZTC0 /G/ZTC2 /G/ZTC9

Enter the TCP/IP SSLPort to be used with WebSafe(Default port

443).

Enter the distinguished name (no default).

Example: CN=customer test key,OU=Persona Certificate,O="RSA Data

Security, Inc.",C=US.

Use double quotes (" ") around entry with embedded commas.

Enter the IP address and TCP/IP name pairs for WebSafe boxes.

One IP address/TCP name pair per line.

Maximum number pairs is 16. Enter a dot(.) when finished.

No default is provided.

Example: 172.16.71.30 $ZTC8.

Enter the location of WID keyfile (Default is

/usr/local/webserver/conf/wid.keyfile).

Example: /usr/local/webserver/conf/wid.keyfile.

Configuring...please wait

The WebSafe configuration is complete. Run the keyadmin utility

to obtain a certificate if you have not yet done so. Once you

get the certificate, restart the server to use WebSafe

encryption.