HP XP7 PA Software Installation Guide

ManualsBrandsHP ManualsSoftwareHP StorageWorks Performance Advisor XP Media Kit

Management Station

To configure SSL settings in your management station perform the following steps:

NOTE: As an example we have provided the below mentioned procedure, where the vendor is

verisign. Hence, the procedure might change based on the vendor's discretion.

1. From the management station generate the private key:

Navigate to C:\Program Files\Java\jdk1.6.0_33\bin

C:\Program Files\Java\jdk1.6.0_33\bin>keytool -genkey -alias tomcat -keyalg RSA

-keystore c:\hpss\pa\tomcat\conf\keystore

Where ever the password is prompted the password provided is “changeit”

Enter keystore password:

Re-enter new password:

What is your first and last name?

[ Since the system is not in any of the domain, the system name is provided ]

[Unknown]: vmwin2k3r2

What is the name of your organizational unit?

[Unknown]: SPD

What is the name of your organization?

[Unknown]: HP

What is the name of your City or Locality?

[Unknown]: BLR

What is the name of your State or Province?

[Unknown]: KAR

What is the two-letter country code for this unit?

[Unknown]: IN

Is CN=vmwin2k3r2, OU=SPD, O=HP, L=BLR, ST=KAR, C=IN correct?

[no]: yes

Enter key password for <tomcat>

(RETURN if same as keystore password):

2. Generate the CSR file by executing the following command:

C:\Program Files\Java\jdk1.6.0_33\bin>keytool -certreq -alias tomcat

-file csr.txt -certreq -keystore c:\HPSS\pa\tomcat\conf\keystore

Where ever the password is prompted the password provided is “changeit”

Enter keystore password:

The text file csr.txt will be generated in the current directory.

Type csr.txt at the prompt to open the file.

C:\Program Files\Java\jdk1.6.0_33\bin>csr.txt

The sample for the csr.txt file contents is mentioned below:

-----BEGIN NEW CERTIFICATE REQUEST-----

MIIBojCCAQsCAQAwYjELMAkGA1UEBhMCSU4xDDAKBgNVBAgTA0tBUjEMMAoGA1UEBxMDQkxSMQsw

CQYDVQQKEwJIUDEMMAoGA1UECxMDU1BEMRwwGgYDVQQDExNwYXhwd2luMy5pbmQuaHAuY29tMIGf

MA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDAMSRH7WKXGi0lGn12CEb1UTcHmYiwDeGiMBTpzCtv

DjaAbFMNSgVzcMb/uUcJ9eaudui3tzfIh2Y2FkUkar9KCdifWotRqF1/UUtmUHU97eYbO9Zpjuou

V9G+Kn1Jj0G+xibIR2b3MMHl7zDz8YCxhAlBL3RmUypoTQPicGUqRQIDAQABoAAwDQYJKoZIhvcN

AQEFBQADgYEAGW86vNE8jQ9PHIiXZ5Gr1TG3d0XCwCFKfSzA1Cf4DWSJqv0UeXK5ci44w0+8oqte

1ceH7pjljukwsuTCcaktSjCVWDUp/O8f2zNY0YNootj6khCm1Jqlv1/67jfGUL9RUNjajd7sZa2u

nm6GiHvShVidZYKTGc4QQ0GsOpdThts=

-----END NEW CERTIFICATE REQUEST-----

3. Importing the Primary and Secondary certificates by verisign:

C:\Program Files\Java\jdk1.6.0_33\bin>keytool -import -trustcacerts -alias

primaryIntermediate -keystore c:\hpss\pa\tomcat\conf\keystore -file c:\hpss\pa\tomcat

\conf\primary.cer

Signed approach 87