Security Menu & Forms
246
Security Certificates
ACS generates its own self-signed SSL certificate for HTTPS using
OpenSSL.
Note: It is highly recommended that you use the “openssl” tool to replace the ACS
generated certificate.
Certificate for HTTP Security
A certificate for HTTP security is created by a CA (Certificate Authority).
Certificates are most commonly obtained through generating public and
private keys using a public key algorithm like RSA or X.509. The keys can be
generated by using a key generator software. The procedures to obtain a
Signed Digital Certificate is documented in the ACS Command Reference
Guide, Chapter 3 “Authentication”, Section 3.7 “Certificate for HTTP
Security”.
User Configured Digital Certificate
You can generate a self-signed digital certificate. It is highly recommended
that you use the “openssl” tool to generate a self-signed certificate and replace
the ACS generated certificate.The procedures to configure a self-signed
digital certificate is documented in the ACS Command Reference Guide,
Chapter 3 “Authentication”, Section 3.8 “User Configured Digital
Certificate”
X.509 Certificate on SSH
The OpenSSH software included with ACS has support for X.509 certificates.
The administrator must activate and configure the SSH to use X.509. In order
to implement authentication of SSH sessions through exchange of X.509
certificates please refer to the configuration procedures described in the ACS
Command Reference Guide, Chapter 3 “Authentication”, Section 3.8 “X.509
Certificate on SSH”.
To Next Page
Loading...
