Appendix b self-signed certificate generation, Procedure 23, Procedure 23 generating self-signed certificates – Nortel Networks NN42030-300 User Manual
Page 59
59
.
Appendix B
Self-signed certificate generation
As an alternative to using a Certificate Authority, you can generate and
use self-signed certificates.
ATTENTION
Self-signed certificates do not provide the same level of security as CA-signed
certificates. Use self-signed certificates for test or demonstration purposes only.
For more information about the Java keytool, go to
an
d search on the keyword keytool.
Procedure 23
Generating self-signed certificates
Step
Action
1
Log on to the server as nortel.
2
To become the superuser, enter the following command:
su
3
Change to the certificate keystore directory:
cd /opt/SQMobilityGW/
4
Delete the default keystore:
rm .keystore
5
Generate a self-signed certificate keystore and certificate:
/usr/java/jdk1.5.0_03/bin/keytool -genkey
-alias Tomcat -keyalg RSA -storepass firsthand
-keypass firsthand -dname ’cn=
-keystore .keystore -validity xxx
where
xxx represents the number of days until the
certificate expires.
The default value is
Nortel Mobile Communication 3100 Series Portfolio
Nortel Mobile Communication Gateway 3100 Installation and Upgrades
NN42030-300
02.03
Standard
9 May 2008
Copyright © 2007, 2008 Nortel Networks
.