Virtual TapeServer 6.04.03 Installation Guide

Managing Certificates

Virtual TapeServer (VTS) uses X.509 certificates Secure Sockets Layer (SSL) communication

between the browser and the VTS web server. Certificates can be self-signed and generated by

VTS or they can be issued by a Certificate Authority.

Note If you use a self-signed certificate, your browser may display a certificate warning

when you access VTS. To prevent this warning, use a certificate signed by a

Certificate Authority or add an exception to the browser. In addition, if the hostname

of the VTS server does not match the hostname in the certificate, the browser will

display a warning or may not display the page. In this case, generate another

certificate after the hostname is set on the VTS server.

Generating a self-signed certificate

If you want to generate another self-signed certificate, complete these steps. The new

certificate will be valid for three years. (The System Status page displays the certificate

expiration date.)

To generate and install a self-signed certificate

1. Access the VTS web interface.

2. Click Log In and log in as a user with Administrative privileges.

3. Click Supervisor Functions on the navigation pane.

4. Click Generate Web Server Certificate.

5. When prompted, click OK to replace the existing web server certificate and restart the

web server.

Generating and installing a certificate from a Certificate Authority

Before you begin this process, familiarize yourself with the Certificate Authority that will sign

your certificate and its processes for signing certificates.

To generate a certificate

1. Log in to the VTS server.

2. Become root:

su -