Dell Data Protection | Encryption Manuel d'utilisateur télécharger pdf (Page 77)

Enterprise Server Installation and Migration Guide 77

Select

Advanced Request

and click

Select the option to

Submit a certificate request using a base64 encode PKCS #10 file

and click

Paste in the contents of the CSR request in the text box. Select a certificate template of

Web Server

and click

Submit

Save the certificate. Select

DER encoded

and click

Download CA certificate

Save the certificate. Select

DER encoded

and click

Download CA certification path

Import the converted signing authority certificate. Return to the DOS window. Type:

keytool -import -trustcacerts -file <csr-filename> -keystore cacerts

Now that the signing authority certificate has been imported, the server certificate can be imported (the chain of trust can be

established). Type:

keytool -import -alias sslkey -file <csr-filename> -keystore cacerts

Use the alias of the self-signed certificate to pair the CSR request with the server certificate.

A listing of the cacerts file will show that the server certificate has a

certificate chain length

, which indicates that the

certificate is not self-signed. Type:

keytool -list -v -keystore cacerts

The certificate fingerprint of the second certificate in the chain is the imported signing authority certificate (which is also listed

below the server certificate in the listing).

The server certificate has successfully been imported, along with the signing authority certificate.

How to Export a Certificate to .PFX Using the Certificate Management Console

Once you have a certificate in the form of a .crt file in the MMC, it must be converted to a .pfx file for use with Keytool when the

Dell Security Server is used in DMZ Mode and when importing a Dell Manager certificate into the Dell Server Configuration Tool.

Open the Microsoft Management Console.

Click

File

Add/Remove Snap-in

Click

Add

At the Add Standalone Snap-in window, select

Certificates

and click

Add

Select

Computer Account

and click

At the Select Computer window, select

Local computer (the computer this console is running on)

and click

Finish

Click

In the Console Root folder, expand Certificates (Local Computer).

Go to the Personal folder and locate the desired certificate.

Highlight the desired certificate, right-click

All Tasks

Export

When the Certificate Export wizard opens, click

Select

Yes, export the private key

and click

Select

Personal Information Exchange - PKCS #12 (.PFX)

and then select the sub-options

Include all certificates in the

certification path if possible

and

Export all extended properties

. Click

Enter and confirm a password. This can be any password of your choosing. Choose a password that is easy for you to

remember, but no one else. Click

Click

Browse

to browse to the location of where you would like to save the file.

In the File Name field, enter a name to save the file as. Click

Save

Click

Finish

1 2 ... 72 73 74 75 76 77 78 79 80

Commentaires sur ces manuels

Pas de commentaire

Dell Data Protection | Encryption Manuel d'utilisateur Page 77

Commentaires sur ces manuels

Produits connexes et manuels pour Logiciel de base de données Dell Data Protection | Encryption