HPE Knowledge Article
|
|
- Nathaniel Davidson
- 6 years ago
- Views:
Transcription
1 HPE Knowledge Article HPE 5930/5940 Switch Series - Connect to OVSDB Client Article Number mmr_sf-en_us Environment HPE 5930/5940 switches can be configured as OVSDB servers. One common use case of this functionality is an OVSDB server for an VMWare NSX Controller cluster. This enables the 5930/5940 to be a HW VTEP for a VMWare NSX environment. The connection between the 5930/5940 and NSX must be done over SSL. This document explains how to configure this feature for VMWare NSX. Issue Certification generation, placement on switch and placement on NSX is outlined here. This outline applies to Comware version R2609 and later releases. This does not apply to Comware R24xx versions. Cause Resolution Steps to set up NSX HW VTEP with Comware 1) Create certificate files 2) Configure the 5930/5940 (need R2609) 3) Configure HW VTEP in NSX with certificate 1) Steps to create the certificate files, ca.crt and server.pem Make sure that the clock times are the same on the linux machine and the switch. Use the linux command date and/or ntp settings on the switch Performed on linux: mkdir certgeneration cd certgeneration cp /etc/ssl/openssl.cnf./
2 touch index.txt echo 01 > serial mkdir democa cd democa mkdir newcerts cp../index.txt. cp../serial. cd.. openssl req -x509 -nodes -sha256 -days 365 -newkey rsa:2048 -keyout ca.key -out ca.crt openssl rsa -in ca.key -out ca.key openssl genrsa -aes256 -out server.key 2048 openssl rsa -in server.key -out server.key openssl req -new -key server.key -out server.csr -config openssl.cnf openssl ca -in server.csr -out server.crt -cert ca.crt -keyfile ca.key -config openssl.cnf cat server.crt server.key > server.pem get ca.crt and server.pem onto switch See bottom for a capture of generation of certificates. 2) Example configuration for the switch interface Ten-GigabitEthernet1/0/20 port link-mode bridge vtep access port service-loopback group 1 type vsi-gateway tunnel global source-address vxlan tunnel mac-learning disable l2vpn enable ovsdb server ssl ip port 6640 ovsdb server ssl ip port 6640 ovsdb server ssl ip port 6640 #for L3 VTEP # ip address of loopback interface # is the address of 1st NSX Controller # is the address of 2nd NSX Controller # is the address of 3rd NSX Controller pki domain vmware ca identifier ca.crt certificate request entity vmware public-key rsa general name vmware length 2048 undo crl check enable pki entity vmware ovsdb server pki domain vmware ovsdb server bootstrap ca-certificate flash:/vswitchd.cacert pki import domain vmware pem ca filename ca.crt pki import domain vmware pem local filename server.pem ovsdb server enable vtep enable 3) Configure HW VTEP in NSX
3 In vsphere Web Client: Networking and Security Service Definitions Hardware Devices Green plus sign to add new From the file, server.pem: Copy all text from the beginning to the end of the certificate, including the line before and after. E.g: -----BEGIN CERTIFICATE----- MIID9zCCAt+gAwIBAgIBATANBgkqhkiG9w0BAQsFADCBiTELMAkGA1UEBhMCVVMx FjAUBgNVBAgMDU1hc3NhY2h1c2V0dHMxEDAOBgNVBAcMB0FuZG92ZXIxDDAKBgNV BAoMA0hQRTEMMAoGA1UECwwDSFBFMQ4wDAYDVQQDDAVTY290dDEkMCIGCSqGSIb3 DQEJARYVc2NvdHQudy5yZWV2ZUBocGUuY29tMB4XDTE4MDMwMzE1MTEzOFoXDTE5 MDMwMzE1MTEzOFowdzELMAkGA1UEBhMCVVMxFjAUBgNVBAgMDU1hc3NhY2h1c2V0 dhmxddakbgnvbaoma0hqrtemmaoga1uecwwdsfbfmq4wdaydvqqddavty290ddek MCIGCSqGSIb3DQEJARYVc2NvdHQudy5yZWV2ZUBocGUuY29tMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrHb8bWrZwMu86MPl/P9KJGRgKN/ieUl5rD3 dt8mxhv1g5nbph0895hk0a6n2dfndcccml6mkibghhbf4i0s7jmfxvlqmehwi1xp eujqwxpzrik79/4agtfstzzipy2bmrnjpoaevcmmmckzx9v2aqulugovzwnpp1xx LflD43pgdR5cDI8GBH0CYakuSb0WxC+DqEGVSsu4cntA/JHwznUcDrj8XdZXKmwi bzg46tsf3w8ecnzlyrdopodzra6djvx6vonbbwnmstzdeqnf/p6djszycfcddwzf HA4aD+Lap7mhcMLjQsepMMHM5VZhIS7fmeYKL8WAP1s9WFHYKwIDAQABo3sweTAJ BgNVHRMEAjAAMCwGCWCGSAGG+EIBDQQfFh1PcGVuU1NMIEdlbmVyYXRlZCBDZXJ0 awzpy2f0ztadbgnvhq4efgqucun+njsedlyclecbrzbqp6jkzzcwhwydvr0jbbgw FoAUT1hFkdOMmPZ31XyRB6CzrpjG2BEwDQYJKoZIhvcNAQELBQADggEBAHw5cZWM EtKppB7sRj8jMR5WXuS+LJqKVnr0BS2mVkxlnVc+P8xDEdphtPkd+xeHX83c6xtB sxpw774e37wstvnkei5dmg2c3da2c5qrpcsxxvk8uirpszxghkvgjc82jgyaozhi qv00yrh3c/sq+vfq6oxuf9og6gpjvkawynejuwtpdnvy6bfcrkln4ofmq5eevcll MbWupJQ6UTPMwScX3SfU4jSYFYhdQl4NsSB7H9q2kOLW7KCrh1yMBsHqHNuc7eJb oyuedcqr5ifuv0iv9or+k3qkoils59nwtrzqc/gaqeycx1luh6ve68bwc30cbvnl RrldNBOQxRLS4i4= -----END CERTIFICATE----- Paste it into here:
4 Once OK is clicked, the OVSDB connection between the switch and NSX should be established. The Hardware Device should appear as Up on this screen. If it does not connect properly, debug ovsdb server should be captured. Capture of certificate generation: Starting with the first openssl command: openssl req -x509 -nodes -sha256 -days 365 -newkey rsa:2048 -keyout ca.key -out ca.crt Generating a 2048 bit RSA private key writing new private key to 'ca.key' You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank Country Name (2 letter code) [AU]:US State or Province Name (full name) [Some-State]:Massachusetts Locality Name (eg, city) []:Andover Organization Name (eg, company) [Internet Widgits Pty Ltd]:HPE Organizational Unit Name (eg, section) []:HPE Common Name (e.g. server FQDN or YOUR name) []:John Address []:john@hpe.com user1@host1:~/cert5$ openssl rsa -in ca.key -out ca.key writing RSA key
5 openssl genrsa -aes256 -out server.key 2048 Generating RSA private key, 2048 bit long modulus e is (0x10001) Enter pass phrase for server.key: Verifying - Enter pass phrase for server.key: user1@host1:~/cert5$ openssl rsa -in server.key -out server.key Enter pass phrase for server.key: writing RSA key user1@host1:~/cert5$ openssl req -new -key server.key -out server.csr -config openssl.cnf You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank Country Name (2 letter code) [AU]:US State or Province Name (full name) [Some-State]:Massachusetts Locality Name (eg, city) []:Andover Organization Name (eg, company) [Internet Widgits Pty Ltd]:HPE Organizational Unit Name (eg, section) []:HPE Common Name (e.g. server FQDN or YOUR name) []:John Address []:john@hpe.com Please enter the following 'extra' attributes to be sent with your certificate request A challenge password []:7519 An optional company name []:HPE user1@host1:~/cert5$ openssl ca -in server.csr -out server.crt -cert ca.crt -keyfile ca.key -config openssl.cnf Using configuration from openssl.cnf Check that the request matches the signature Signature ok Certificate Details: Serial Number: 1 (0x1) Validity Not Before: Mar 3 10:07: GMT Not After : Mar 3 10:07: GMT Subject: countryname = US stateorprovincename = Massachusetts organizationname = HPE organizationalunitname = HPE commonname = John address = john@hpe.com X509v3 extensions: X509v3 Basic Constraints: CA:FALSE Netscape Comment: OpenSSL Generated Certificate X509v3 Subject Key Identifier: BC:AC:DE:44:4B:C8:9D:AF:40:96:85:B0:3B:E2:66:61:C9:1D:58:0C X509v3 Authority Key Identifier: keyid:ec:e6:46:d2:a9:e6:54:30:da:5c:6b:80:b2:e7:8a:85:9f:1f:08:76
6 Certificate is to be certified until Mar 3 10:07: GMT (365 days) Sign the certificate? [y/n]:y 1 out of 1 certificate requests certified, commit? [y/n]y Write out database with 1 new entries Data Base Updated user1@host1:~/cert5$ cat server.crt server.key > server.pem user1@host1:~/cert5$ i Copyright 2018 Hewlett Packard Enterprise Development LP. The information contained herein is subject to change without notice.the only warranties for Hewlett Packard Enterprise products and services are set forth in the express warranty statements accompanying such products and services.nothing herein should be construed as constituting an additional warranty. Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein.
TLS encryption and mutual authentication using syslog-ng Open Source Edition
TLS encryption and mutual authentication using syslog-ng Open Source Edition March 02, 2018 Copyright 1996-2018 Balabit, a One Identity business Table of Contents 1. Creating self-signed certificates...
More informationsyslog-ng Open Source Edition 3.16 Mutual authentication using TLS
syslog-ng Open Source Edition 3.16 Mutual authentication using TLS Copyright 2018 One Identity LLC. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright. The software
More informationHow to Enable Client Certificate Authentication on Avi
Page 1 of 11 How to Enable Client Certificate Authentication on Avi Vantage view online Overview This article explains how to enable client certificate authentication on an Avi Vantage. When client certificate
More informationDEPLOYMENT GUIDE. SSL Insight Certificate Installation Guide
DEPLOYMENT GUIDE SSL Insight Certificate Installation Guide Table of Contents Introduction...3 Generating CA Certificates for SSL Insight...3 Importing a CA Certificate and Certificate Chain onto the A10
More informationSecuring A Basic HTCondor Pool
Securing A Basic HTCondor Pool Basic Concepts You have an HTCondor pool Personal HTCondor (1 node) 1000 node cluster Who can use your pool? Basic Concepts Who can use it is really two concepts: The Who
More informationSecure Websites Using SSL And Certificates
By punk0mi Published: 2007-05-16 17:14 Secure Websites Using SSL And Certificates This how-to will guide you through the entire process of setting up a secure website using SSL and digital certificates.
More informationCreating a Media5 Device Host Certificate with OpenSSL
For All Mediatrix Units v. 2.0.41.762 2017-12-21 Table of Contents Table of Contents Generating a Private Key 3 Creating a Certificate Signing Request (CSR) from a Private Key 4 Signing the CSR file by
More informationmobilefish.com Create self signed certificates with Subject Alternative Names
Create self signed certificates with Subject Alternative Names INTRO In this video I will explain how to create a self signed certificate with Subject Alternative Names (SAN). CERTIFICATE WITH SUBJECT
More informationCP860, SIP-T28P, SIP-T26P, SIP-T22P, SIP-T21P, SIP-T20P, SIP-T19P, SIP-T46G, SIP-T42G and SIP-T41P IP phones running firmware version 71 or later.
This guide provides the detailed instructions on how to configure and use certificates on Yealink IP phones. In addition, this guide provides step-by-step instructions on how to create custom certificates
More informationPublic-Key Infrastructure (PKI) Lab
SEED Labs PKI Lab 1 Public-Key Infrastructure (PKI) Lab Copyright 2018 Wenliang Du, Syracuse University. The development of this document was partially funded by the National Science Foundation under Award
More informationHow to integrate CMS Appliance & Wallix AdminBastion
How to integrate CMS Appliance & Wallix AdminBastion Version 1.0 Date 24/04/2012 P 2 Table of Contents 1.0 Introduction... 3 1.1 Context and objective... 3 3.0 CMS Appliance prerequisites... 4 4.0 Certificate
More informationManaging Certificates
Loading an Externally Generated SSL Certificate, page 1 Downloading Device Certificates, page 4 Uploading Device Certificates, page 6 Downloading CA Certificates, page 8 Uploading CA Certificates, page
More informationFun with Certifictee Oitober 20, 2018
bc - an arbitrary precision calculator language Windows: http://gnuwin32.sourceforge.net/packages/bc.htm macos: should come built in Linux: should come built in Flags: -l : uses mathlib libraries and makes
More informationCertificate service - test bench. Project to establish the National Incomes Register
Certificate service - test bench Project to establish the National Incomes Register 2 (9) CONTENTS 1 Foreword... 3 2 Test materials... 3 2.1 Parameters used in the test bench services... 3 2.2 Test bench
More informationHPE Knowledge Article
HPE Knowledge Article HPE Integrated Lights-Out 4 (ilo 4) - How to Reset ilo Management Processor and ilo Password? Article Number mmr_sf-en_us000012649 Environment HPE Integrated Lights-Out 4 Issue Reset
More informationManaging TLS Certificate, KeyStore, and TrustStore Files
Managing TLS Certificate, KeyStore, and TrustStore Files This chapter contains the following sections: About the TLS Certificate, KeyStore, and TrustStore Files, page 1 Preparing to Generate the TLS Credentials,
More informationPivotal Greenplum Command Center
PRODUCT DOCUMENTATION Pivotal Greenplum Command Center Version 1.3 Rev: A06 2015 Pivotal Software, Inc. Copyright Notice Copyright Copyright 2015 Pivotal Software, Inc. All rights reserved. Pivotal Software,
More informationHPE Knowledge Article
HPE Knowledge Article HPE MSM Controller Series - How to Configure Different Login or Welcome Pages per VSC/ SSID Article Number mmr_sf-en_us000005550 Environment HPE MSM Controller 710 series HPE MSM
More informationSSL Configuration: an example. July 2016
SSL Configuration: an example July 2016 This document details a walkthrough example of SSL configuration in an EM managed mongodb environment. SSL certificates are used to enforce certificate based security
More informationPivotal Greenplum Command Center
PRODUCT DOCUMENTATION Pivotal Greenplum Command Center Version 2.1 Rev: A01 2016 Pivotal Software, Inc. Copyright Notice Copyright Copyright 2016 Pivotal Software, Inc. All rights reserved. Pivotal Software,
More informationX.509 and SSL. A look into the complex world of X.509 and SSL USC Linux Users Group 4/26/07
X.509 and SSL A look into the complex world of X.509 and SSL http://www.phildev.net/ssl/ USC Linux Users Group 4/26/07 Phil Dibowitz http://www.phildev.net/ The Outline Introduction of concepts X.509 SSL
More informationUCON-IP-NEO Operation Web Interface
UCON-IP-NEO Operation Web Interface copyright G&D 25/01/2012 Web Interface version 2.30 Subject to possible errors and technical modifications License notes G&D license Copyright G&D GmbH 2003-2012: All
More informationUsing ISE 2.2 Internal Certificate Authority (CA) to Deploy Certificates to Cisco Platform Exchange Grid (pxgrid) Clients
Using ISE 2.2 Internal Certificate Authority (CA) to Deploy Certificates to Cisco Platform Exchange Grid (pxgrid) Clients Author: John Eppich Table of Contents About this Document... 4 Using ISE 2.2 Internal
More informationHOWTO: Setup FTP with TLS support
HOWTO: Setup FTP with TLS support Contributed by Michael Felt HOWTO setup AIX FTPD for TLS sessions In this article I shall resolve a new fallacies about AIX FTP and TLS connections Fallacy #1: Hard to
More informationYour Apache ssl.conf in /etc/httpd.conf.d directory has the following SSLCertificate related directives.
If you ever need to use HTTPS or SSL with your website, you will need to have an SSL certificate created, which your Apache web server would use to hand out to the web browsers of the site visitors. The
More informationLAB :: Secure HTTP traffic using Secure Sockets Layer (SSL) Certificate
LAB :: Secure HTTP traffic using Secure Sockets Layer (SSL) Certificate In this example we are using apnictraining.net as domain name. # super user command. $ normal user command. N replace with your group
More informationAzure AD Configuration Script for Cisco Security
Azure AD Configuration Script for Cisco Email Security Contents Introduction Prerequisites Requirements Components Used Azure AD Configuration Script for Cisco Email Security Related Information Introduction
More informationCrypto Programming with OpenSSL. (Creating Certificates)
Crypto Programming with OpenSSL (Creating Certificates) Secure Host-to-Host Communication Secure communication between hosts is necessary to prevent successful MITM attacks The communication channel is
More informationMac OSX Certificate Enrollment Procedure
Mac OSX Certificate Enrollment Procedure 1. Log on to your Macintosh machine, open a terminal to create a key: openssl genrsa -des3 -out dpvpn-cert.key 1024 2. Create a CSR file with the newly created
More informationHPE Knowledge Article
HPE Knowledge Article HPE Virtual Connect Flex Ethernet Module for c-class BladeSystem - The Connection Speed in the Virtual Connect Server Profile Does Not Match the NIC Speed of the Operating System
More informationHP Data Protector 7.00 encrypted control communication certificates management
HP Data Protector 7.00 encrypted control communication certificates management Using custom certificates Technical white paper Table of contents Summary... 2 Introduction... 2 Creating and distributing
More informationSecuring IoT applications with Mbed TLS Hannes Tschofenig
Securing IoT applications with Mbed TLS Hannes Tschofenig Part#2: Public Key-based authentication March 2018 Munich Agenda For Part #2 of the webinar we are moving from Pre-Shared Secrets (PSKs) to certificated-based
More informationOpen SDN Controller Security
The following topics describe the security measures that Open SDN Controller implements: Security Considerations, page 1 Configuring LDAP, page 2 Configuring a RADIUS Server for AAA Authentication, page
More informationMore about Certificates
More about Certificates From Previous Tutorial We already saw how to set up our own Certificate Authority (CA), as well as how to create our self-signed certificates, a couple of tutorials ago using OpenSSL
More informationAdvantech AE Technical Share Document
Advantech AE Technical Share Document Date 2019/1/4 SR# 1-3643162399 Category FAQ SOP Related OS N/A Abstract Keyword Related Product How to use MQTT TLS with irtu device MQTT, SSL, TLS, CA, certification,
More informationHPE Knowledge Article
HPE Knowledge Article HPE Integrated Lights Out (ilo 5) for Gen10 Servers - What is System Recovery Set? Article Number mmr_sf-en_us000021097 Environment HPE Integrated Lights Out (ilo 5) HPE ProLiant
More informationGetting Started with the VQE Startup Configuration Utility
CHAPTER 2 Getting Started with the VQE Startup Configuration Utility This chapter explains how to use the Cisco VQE Startup Configuration Utility to perform the initial configuration tasks needed to get
More information1 of 38 8/11/2018, 7:59 PM
1 of 38 8/11/2018, 7:59 PM sudo sudo apt easy-rsa $ sudo apt-get update $ sudo apt-get install openvpn easy-rsa 2 of 38 8/11/2018, 7:59 PM 3 of 38 8/11/2018, 7:59 PM make-cadir easy-rsa $ make-cadir ~/openvpn-ca
More informationHPE FlexFabric 7900 Switch Series
HPE FlexFabric 7900 Switch Series VXLAN Configuration Guide Part number: 5998-8254R Software version: Release 213x Document version: 6W101-20151113 Copyright 2015 Hewlett Packard Enterprise Development
More informationManaging User Accounts
Configuring Guest User Accounts, page 1 Configuring Administrator Usernames and Passwords, page 4 Changing the Default Values for SNMP v3 Users, page 6 Generating a Certificate Signing Request, page 7
More informationCisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco website at
Document Date: May 16, 2017 THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL
More informationGetting Started with the VQE Startup Configuration Utility
CHAPTER 2 Getting Started with the VQE Startup Configuration Utility This chapter explains how to use the Cisco VQE Startup Configuration Utility to perform the initial configuration tasks needed to get
More informationCreating and Installing SSL Certificates (for Stealthwatch System v6.10)
Creating and Installing SSL Certificates (for Stealthwatch System v6.10) Copyrights and Trademarks 2017 Cisco Systems, Inc. All rights reserved. NOTICE THE SPECIFICATIONS AND INFORMATION REGARDING THE
More informationDeploying a Dialogic 4000 Media Gateway as a Survivable Branch Appliance for Microsoft Lync Server 2010
Deploying a Dialogic 4000 Media Gateway as a Survivable Branch Appliance for Microsoft Lync Server 2010 February 2011 64-1146-01 www.dialogic.com Copyright and Legal Notice Copyright and Legal Notice Copyright
More informationHP D6000 Disk Enclosure Direct Connect Cabling Guide
HP D6000 Disk Enclosure Direct Connect Cabling Guide Abstract This document provides cabling examples for when an HP D6000 Disk Enclosure is connected directly to a server. Part Number: 682251-001 September
More informationConfiguring LDAP Authentication for HPE OBR
Technical White Paper Configuring LDAP Authentication for HPE OBR For the Windows and Linux Operation System Software Version 10.00 Table of Contents Introduction... 2 Supported Directory servers for LDAP...
More informationSterling Secure Proxy Version 3 FTP Adapter Configuration with SSL. ProFTP SSL Certificate creation with openssl
Sterling Secure Proxy Version 3 FTP Adapter Configuration with SSL The SSP configuration has been tested with the following components. SSP 3 on Windows 2003 ProFTP Version 1.2.10 on Red Hat ES 4 Lftp
More informationServer software page. Certificate Signing Request (CSR) Generation. Software
Server software page Certificate Signing Request (CSR) Generation Software Apache (mod_ssl and OpenSSL)... 2 cpanel and WHM... 3 Microsoft Exchange 2007... 8 Microsoft Exchange 2010... 9 F5 BigIP... 13
More informationHPE Knowledge Article
HPE Knowledge Article HPE FlexFabric 5900CP Switch Series - JG838A Switch Fiber Channel Configuration and Troubleshooting Cheatsheet Article Number mmr_sf-en_us000005602 Environment Working FC config with
More informationCisco TelePresence Conductor Certificate Creation and Use
Cisco TelePresence Conductor Certificate Creation and Use Deployment Guide XC3.0 January 2015 Contents Introduction 3 PKI introduction 3 Overview of certificate use on the TelePresence Conductor 3 Certificate
More informationMSE System and Appliance Hardening Guidelines
MSE System and Appliance Hardening Guidelines This appendix describes the hardening of MSE, which requires some services and processes to be exposed to function properly. This is referred to as MSE Appliance
More informationHPE FlexFabric 5950 Switch Series
HPE FlexFabric 5950 Switch Series About the HPE FlexFabric 5950 Configuration Guides Part number: 5200-0808 Software version: Release 6106 and later Document version: 6W100-20160513 Copyright 2016 Hewlett
More informationHP Web Jetadmin 8.0 Credential Store Feature
HP Web Jetadmin 8.0 Credential Store Feature Table of Contents: Overview...1 The Credential Store...1 Interacting with the Credential Store...2 Configuration of Device Credentials...2 Example...3 Credential
More informationHPE Security ArcSight SmartConnectors. Format Preserving Encryption Environment Setup Guide
HPE Security ArcSight SmartConnectors Format Preserving Encryption Environment Setup Guide October 19, 2017 Legal Notices Warranty The only warranties for Hewlett Packard Enterprise products and services
More informationHPE Knowledge Article
HPE Knowledge Article HPE 5500 EI Switch Series - How to use the Packet Capture Utility Article Number mmr_sf-en_us000005595 Environment HP 5500-24G EI Switch HPE A-Series Switches Issue How can one use
More informationSAP Business One Integration Framework
SAP Business One Integration Framework Configure Connectivity to SAP Business One Service Layer PUBLIC Global Roll-out August 2018, Krisztián Pápai TABLE OF CONTENTS 1. OBTAIN A VALID CERTIFICATE... 3
More informationHPE ESXi Offline Bundle
HPE ESXi Offline Bundle HPE Offline bundle for VMware ESXi includes HPE CIM Providers. It is recommended that customers update to the latest version on supported ProLiant at their earliest convenience.
More informationHow to manage the X.509 Certificates in RUGGEDCOM WIN BS and CPEs Software Version 4.3 RUGGEDCOM WIN FAQ 10/2014
FAQ 10/2014 How to manage the X.509 Certificates in RUGGEDCOM WIN BS and CPEs Software Version 4.3 RUGGEDCOM WIN http://support.automation.siemens.com/ww/view/en/103158899 This entry is from the Siemens
More informationProduct Support Notice
PSN # PSN004561u Product Support Notice 2017 Avaya Inc. All Rights Reserved. Original publication date: 25-Aug-15. This is Issue #07, published date: 14-Dec-17. Severity/risk level High Urgency Immediately
More informationProftpd 지시자설정 10_29 페이지 년 10 월 29 일목요일 오후 2:08
Proftpd 지시자설정 2009 년 10 월 29 일목요일 오후 2:08 루트로접속막기 [root@ruffy&13:47& sbin]# cd /usr/local/ftp/etc/ [root@ruffy&14:05& etc]# vi proftpd.conf IP 대역접속제한 Order 는앞에서부터적용 (apache 와반대 ) 유저제한 디렉토리접근제한 젂송파일사이즈제한
More informationReplace HyperFlex Self-Signed SSL Certificates with CA-issued Certificates
Replace HyperFlex Self-Signed SSL Certificates with CA-issued Certificates Contents Google Chrome Mozila FireFox Software Credentials HX Cluster DNS Server Certificate Authority vcenter Server 1. Create
More informationConfiguring Embedded LDAP Authentication
HP Restricted Configuring Embedded LDAP Authentication configure Configuring Embedded LDAP Authentication For HP product models: LaserJet 4345mfp, LaserJet 9040mfp, LaserJet 9050mfp, LaserJet 9500mfp,
More informationTable 1. Terminology used in this white paper. Page 4
Page 3 Table 1 Terminology used in this white paper Page 4 Page 5 authenticating and optionally Original packet IP Hdr TCP Data Packet with ESP IP Hdr ESP Hdr TCP Data Encrypted Page 6 Figure 1 ESP data
More informationApache Security with SSL Using FreeBSD
Apache Security with SSL Using FreeBSD cctld Workshop February 14, 2007 Hervey Allen Network Startup Resource Center Some SSL background Invented by Netscape for secure commerce. Only available using Netscape
More informationFortiNAC. Analytics SSL Certificates. Version: 5.x Date: 8/28/2018. Rev: D
FortiNAC Analytics SSL Certificates Version: 5.x Date: 8/28/2018 Rev: D 1 FORTINET DOCUMENT LIBRARY http://docs.fortinet.com FORTINET VIDEO GUIDE http://video.fortinet.com FORTINET KNOWLEDGE BASE http://kb.fortinet.com
More informationA Brief Tour of Apache
APACHE-SSL-HOWTO-FEDORA CORE- 4 A Brief Tour of Apache The RPM packages are a little different from the standard Apache tarball. For example, if you were using the standard tarball, you would find that
More informationHP FlexFabric 5700 Switch Series
HP FlexFabric 5700 Switch Series Security Command Reference Part number: 5998-6695 Software version: Release 2416 Document version: 6W100-20150130 Legal and notice information Copyright 2015 Hewlett-Packard
More informationjodbc Service and SQL Catalog
jodbc Service and SQL Catalog 2006, 2016 Zumasys, Inc. jbase_agent {options} The jbase_agent command can be run from the command prompt (windows) or shell (Linux) as a foreground process for testing and
More informationHPE FlexFabric 5940 Switch Series
HPE FlexFabric 5940 Switch Series EVPN Configuration Guide Part number: 5200-2002b Software version: Release 25xx Document version: 6W102-20170830 Copyright 2017 Hewlett Packard Enterprise Development
More informationHP UFT Connection Agent
HP UFT Connection Agent Software Version: For UFT 12.53 User Guide Document Release Date: June 2016 Software Release Date: June 2016 Legal Notices Warranty The only warranties for Hewlett Packard Enterprise
More informationPurpose. Target Audience. Overview. Prerequisites. Nagios Log Server. Sending NXLogs With SSL/TLS
Purpose This document describes how to setup encryption between and NXLog on Windows using self signed certificates. Target Audience This document is intended for use by Administrators who would like encryption
More informationConfigure IBM Security Privileged Identity Manager Appliance with a Load Balancer
Configure IBM Security Privileged Identity Manager Appliance with a Load Balancer Aanchal Sinha aansinha@in.ibm.com Nitesh Mehare nimehare@in.ibm.com Parag Gokhale parag.gokhale@in.ibm.com Santosh Ankushkar
More informationHP 5920 & 5900 Switch Series
HP 5920 & 5900 Switch Series Security Command Reference Part number: 5998-2887 Software version: Release2208 Document version: 6W100-20130228 Legal and notice information Copyright 2013 Hewlett-Packard
More informationPulse Policy Secure. UAC Interoperability with the ScreenOS Enforcer. Product Release 5.1. Document Revision 1.0 Published:
Pulse Policy Secure UAC Interoperability with the ScreenOS Enforcer Product Release 5.1 Document Revision 1.0 Published: 2015-02-10 2015 by Pulse Secure, LLC. All rights reserved Pulse Secure, LLC 2700
More informationHTTPS Setup using mod_ssl on CentOS 5.8. Jeong Chul. tland12.wordpress.com. Computer Science ITC and RUPP in Cambodia
HTTPS Setup using mod_ssl on CentOS 5.8 Jeong Chul tland12.wordpress.com Computer Science ITC and RUPP in Cambodia HTTPS Setup using mod_ssl on CentOS 5.8 Part 1 Basic concepts on SSL Step 1 Secure Socket
More informationSicurezza Informatica: esercitazione 2
Sicurezza Informatica: esercitazione 2 Cataldo Basile < cataldo.basile @ polito.it > Politecnico di Torino Dip. Automatica e Informatica Outline two main topics inspection of PKCS#7 messages certificate
More informationIntelligent Provisioning 1.64(B) Release Notes
Intelligent Provisioning 1.64(B) Release Notes Part Number: 680065-407 Published: March 2017 Edition: 1 2017 Hewlett Packard Enterprise Development LP Notices The information contained herein is subject
More informationHP 6125 Blade Switch Series
HP 6125 Blade Switch Series About the HP 6125 Blade Command s Part number: 5998-3163 Software version: Release 2103 Document version: 6W100-20120907 Legal and notice information Copyright 2012 Hewlett-Packard
More informationExternal Devices. User Guide
External Devices User Guide Copyright 2007 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services
More information14. Configuring Telnet in Knoppix
14. Configuring Telnet in Knoppix Estimated Time: 45 Minutes Objective In this lab, the student will learn how to configure the Telnet service on a system so that the user can remotely administer a Knoppix
More informationIntelligent Provisioning 1.70 Release Notes
Intelligent Provisioning 1.70 Release Notes Part Number: 680065-408 Published: October 2017 Edition: 1 Copyright 2012, 2017 Hewlett Packard Enterprise Development LP Notices The information contained herein
More informationManaging TLS Certificate, KeyStore, and TrustStore Files
Managing TLS Certificate, KeyStore, and TrustStore Files This chapter contains the following sections: About the TLS Certificate, KeyStore, and TrustStore Files, on page 1 Preparing to Generate the TLS
More informationExternal Devices User Guide
External Devices User Guide Copyright 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services
More informationHP A-F1000-A-EI_A-F1000-S-EI VPN Firewalls
HP A-F1000-A-EI_A-F1000-S-EI VPN Firewalls VPN Configuration Guide Part number:5998-2652 Document version: 6PW100-20110909 Legal and notice information Copyright 2011 Hewlett-Packard Development Company,
More informationSSL Certificates SignOn Soltuions September 2018
SSL Certificates SignOn Soltuions 2016 14 September 2018 Table of contents 1. Introduction... 3 2. Object identifiers... 3 3. Create the certificates... 4 3.1 Using OpenSSL... 4 3.1.1 Preparing a Certificate
More informationHPE FlexNetwork MSR Router Series
HPE FlexNetwork MSR Router Series About the HPE MSR Router Series Command s Part number: 5998-8799 Software version: CMW710-R0305 Document version: 6PW106-20160308 Copyright 2016 Hewlett Packard Enterprise
More informationHPE Security ArcSight Connectors
HPE Security ArcSight Connectors SmartConnector for Windows Event Log Unified: Microsoft Network Policy Server Supplemental Configuration Guide March 29, 2013 Supplemental Configuration Guide SmartConnector
More informationVersion 1.1 Revision 4
Version 1.1 Revision 4 Foreword 4 Installation Instructions 5 Backup existing Address Book 5 Pre-requisites 5 OpenLDAP server configuration 5 Generating hashed password 5 Server configuration 5 Schema
More informationHPE FlexNetwork MSR Router Series
HPE FlexNetwork MSR Router Series About the HPE MSR Router Series Configuration Part number: 5998-8821 Software version: CMW710-R0305 Document version: 6PW106-20160308 Copyright 2016 Hewlett Packard Enterprise
More informationPublic-key Infrastructure
Public-key Infrastructure Public-key Infrastructure A set of hardware, software, people, policies, and procedures. To create, manage, distribute, use, store, and revoke digital certificates. Encryption,
More informationUsing Microsoft Certificates with HP-UX IPSec A.03.00
Using Microsoft Certificates with HP-UX IPSec A.03.00 Introduction... 2 Related documentation... 2 Multi-tier PKI topology... 2 Configuration tasks... 4 Single-tier PKI topology with a standalone CA...
More informationVyatta Router. TheGreenBow IPSec VPN Client. Configuration Guide. with Certificate.
TheGreenBow IPSec VPN Client Configuration Guide Vyatta Router with Certificate WebSite: Contact: http://www.thegreenbow.com support@thegreenbow.com IPSec VPN Router Configuration Property of TheGreenBow
More informationPublic-key Infrastructure
Public-key Infrastructure Cryptosystems Cryptosystems Symmetric Asymmetric (public-key) RSA Public key: n=3233, e=17 Private key: d=2753 Let m=65 Encryption: c = 65 17 (mod 3233) = 2790 Decryption: m =
More informationJabber OCS Gateway. Setup Guide. Product: OCS Gateway Document Version: C
Jabber OCS Gateway Setup Guide Product: OCS Gateway 5.4.1 Document Version: C Disclaimers Trademarks Copyright 2008 Jabber, Inc. The information contained in this document is proprietary to Jabber, Inc.
More informationBacula. Ana Emília Machado de Arruda. Protegendo seu Backup com o Bacula. Palestrante: Bacula Backup-Pt-Br/bacula-users/bacula-devel/bacula-users-es
Bacula Protegendo seu Backup com o Bacula Palestrante: Ana Emília Machado de Arruda Bacula Backup-Pt-Br/bacula-users/bacula-devel/bacula-users-es Protegendo seu backup com o Bacula Security goals Authentication
More informationHP 6125 Blade Switch Series
HP 6125 Blade Switch Series About the HP 6125 Blade s Part number: 5998-3152 Software version: Release 2103 Document version: 6W100-20120907 Legal and notice information Copyright 2012 Hewlett-Packard
More informationHP 5920 & 5900 Switch Series
HP 5920 & 5900 Switch Series MCE Configuration Guide Part number: 5998-2896 Software version: Release2207 Document version: 6W100-20121130 Legal and notice information Copyright 2012 Hewlett-Packard Development
More informationHPE Aruba Airwave Installation and Startup Service
Data sheet HPE Aruba Airwave Installation and Startup Service Support Services HPE Installation and Startup Service for select Aruba Airwave products coordinates installation, configuration, and verification
More informationHP A-F1000-A-EI_A-F1000-S-EI VPN Firewalls
HP A-F1000-A-EI_A-F1000-S-EI VPN Firewalls NAT Configuration Guide Part number:5998-2649 Document version: 6PW100-20110909 Legal and notice information Copyright 2011 Hewlett-Packard Development Company,
More informationCisco Expressway Certificate Creation and Use
Cisco Expressway Certificate Creation and Use Deployment Guide First Published: November 2009 Last Updated: September 2017 Software Version: X8.10 Cisco Systems, Inc. www.cisco.com 2 Contents Preface 4
More information