Security
Working with certificates
12-7
Default CA certificates
The following certificates are installed by default:
SOAP API Certificate Authority: Before allowing a SOAP client to connect, the
controller checks the certificate supplied by a SOAP client to ensure that it is issued by a
trusted certificate authority (CA).
Dummy Authority: Used by the internal RADIUS server. You should replace this with
your own CA certificate.
Entrust.net Secure Server Certification Authority: This is the Authorize.Net CA
certificate. It is used to support credit card payments via Authorize.Net.
Management Console Dummy Authority: Used when the management tool
communicates with HP PCM/PMM software.
Note For security reasons, you should replace the default certificates with your own.
Certificate and private key store
This list displays all certificates installed on the controller. The controller uses these
certificates and private keys to authenticate itself to peers.
Items provided in this list are as follows:
ID
A sequentially assigned number to help identify certificates with the same common name.
Issued to
Name of the certificate holder. Select the name to view the contents of the certificate.
X.509 certificate in
PEM file
One or more X.509 certificates Popular format in the Unix
world. X.509 DER certificate is
base64 encoded and placed
between
"-----BEGIN CERTIFICATE-----"
and
"-----END CERTIFICATE-----"
lines. Multiple certificates can
be repeated in the same file.
ASN.1 DER encoded
X.509 CRL
One X.509 CRL Most basic format supported for
CRL.
X.509 CRL in PEM file One X.509 CRL Same format as X.509 certificate
in PEM format, except that the
lines contain BEGIN CRL and
END CRL.
Content and
file format
Items carried in the file Description
To Next Page
Loading...
Need help?
General
