Creating a new key/certificate on the sa8220, Procedure – HP Traffic Director sa7220 User Manual

A P P E N D I X B

HP Traffic Director Server Appliances User Guide

260

Creating a new
Key/Certificate
on the SA8220

Use the policy manager

key create

and

key create

certificate

commands to create new keys and certificates for

SA8220 operation. This procedure can be used when there are no
existing keys and certificates on the server. The advantage is that this
method is very fast, but a CA has not signed the certificates. This
means that users will have to explicitly accept the certificate the first
time they connect to your site.

NOTE: For optimal
security, one or more
fields must be modified to
make the DN unique.

The fields input as part of creating a certificate are called a
Distinguished Name (DN).

Procedure

1. To create a key, type this command:

HP

SA8220

#

config policygroup service

key create [512 | 1024]

2. To create a certificate, type this command:

HP

SA8220

#

config policygroup service

key create certificate [DN

parameters]

NOTE: Alternatively,
default DN parameters
can be specified using the

config ssl dn

command. This allows
recurring parameters to
be specified once and
then reused for multiple
certificates.

Where the optional DN parameters are shown below.

Parameter

Description

life

The number of days that the certificate remains
valid. The default is 30 days.

name

The common (server) name

email

Email address

state

Your state or province

organization

Your company name

unit

Your organizational section

locality

Your town or city