Table of ContentsView in Frames

Installing a CA signed certificate

The advantage of a Certificate Authority (CA) signed certificate is that it verifies to the browser that the system is the system to which the client intended to connect.

Steps

  1. Send the certificate signing request, secureadmin.pem, to the Certificate Authority.

    The secureadmin.pem file is in the /etc/keymgr/csr directory on the storage system.

  2. Back up the secureadmin.pem file by making a copy.
  3. When the Certificate Authority returns the signed certificate, copy the signed certificate into a temporary location on the storage system.
  4. Install the certificate by entering the following command:
    secureadmin addcert ssl directory_path

    directory_path is the full path to the certificate.

    Example

    The following command installs a certificate called secureadmin.pem, currently located in the tempdir directory, into the /etc/keymgr directory:

    secureadmin addcert ssl /etc/tempdir/secureadmin.pem

  5. Disable SSL by entering the following command:
    secureadmin disable ssl
  6. Reenable SSL by entering the following command:
    secureadmin enable ssl