Manualshelf

Virtual TapeServer 6.04.03 Installation Guide

ManualsBrandsHP ManualsServerHP NonStop G-Series
41424344454647484950
36 | Managing Certificates
3. Create a location to store the files that will be generated. It is recommended that you store
the files in a location that will be backed up when a system restore image is created, such
as /etc/pki. This example uses /etc/pki/mycompany as the location:
mkdir /etc/pki/mycompany
4. Change to the new location:
cd /etc/pki/mycompany
5. Create a key file, as follows:
a. Generate the key file:
openssl genrsa -out server_name.key 2048
where server_name is the host name of the VTS server.
b. Change permissions on the key file:
chmod 600 server_name.key
c. Make a copy of the key file and store it in a safe location not on the VTS server.
6. Generate a certificate request, as follows:
a. Generate the certificate request, referencing the previously created key file:
openssl req -new -key server_name.key -out server_name.csr
b. When prompted, respond to each question. The first question is for the password of
the key file created above. Your Certificate Authority may require specific values to be
provided; refer to their documentation for completing this information as they require.
Note The fully qualified domain name of the VTS server must be used for the
Common Name in the certificate, to assure correct behavior. To determine the
fully qualified domain name of the VTS server, enter hostname --fqdn from
the command line of the server.
Here are examples of the questions and responses:
You are about to be asked to enter information that will be
incorporated into your certificate request.
What you are about to enter is what is called a Distinguished Name
or a DN.
There are quite a few fields but you can leave some blank.
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [GB]:US
State or Province Name (full name) [Berkshire]:Texas
Locality Name (eg, city) [Newbury]:Austin
Organization Name (eg, company) [My Company Ltd]:My Company
Organizational Unit Name (eg, section) []:
Common Name (eg, your name or your server's hostname)
[]:myserver.mycompany.com
Email Address []:me@mycompany.com
Please enter the following 'extra' attributes
to be sent with your certificate request