iTP Secure WebServer System Administrator's Guide (Version 7.0)
Integrating the WebSafe2 Internet Security
Processor (WISP)
iTP Secure WebServer System Administrator’s Guide—523346-012
5-9
Configuring the iTP Secure WebServer for
WebSafe2 Internet Security Processors (WISPs)
The install.WS script uses a sample httpd.websafe.config file. The contents
of the sample file are listed in Section 7, Configuring the iTP Secure WebServer. You
can edit the file to modify the WebSafe2 configuration.
Be sure to complete the remaining tasks before attempting to restart the WISP.
Example 5-1. Sample WebSafe2 install.WS Script
#: cd /usr/tandem/webserver/admin/conf
#: install.WS -websafe
This script installs WebSafe configuration files and sets up iTP
Webserver for WebSafe crypto. To revert to software crypto,
simply remove the file httpd.websafe.config in this directory
and restart the server.
Copying files...wait
Looking up running TCP/IP processes on your system...wait
Enter a space separated list of TCP/IP processes which the iTP
WebServer will use. The process name must be entered in OSS
format. Default: /G/ZTC0 /G/ZTC2 /G/ZTC9
#:
Enter the TCP/IP SSLPort to be used with WebSafe(Default port
443).
#:
Enter the distinguished name (no default).
Example: CN=customer test key,OU=Persona Certificate,O="RSA Data
Security, Inc.",C=US.
Use double quotes (" ") around entry with embedded commas.
#:
Enter the IP address and TCP/IP name pairs for WebSafe boxes.
One IP address/TCP name pair per line.
Maximum number pairs is 16. Enter a dot(.) when finished.
No default is provided.
Example: 172.16.71.30 $ZTC8.
#:
Enter the location of WID keyfile (Default is
/usr/local/webserver/conf/wid.keyfile).
Example: /usr/local/webserver/conf/wid.keyfile.
#:
Configuring...wait
The WebSafe configuration is complete. Run the keyadmin utility
to obtain a certificate if you have not yet done so. After you
get the certificate, restart the server to use WebSafe
encryption.