Software authentication – Guralp Systems CMG-DCM User Manual

CMG-DCM Data Communications Module

to the beginning of the file.

13.Restart the CD1.1 transmitter with the command killall

-HUP cd11sf. (Using the -HUP option makes the command

send a hangup signal to the CD1.1 transmitter rather than killing

it outright.)

Software authentication

Some AM units are not supplied with hardware crypto-tokens. These

units can still perform authentication using the openssl package. To

set up an AM using openssl:

1. Change into the CD1.1 transmitter's configuration directory

using

cd /etc/libcd11

2. Generate the DSA parameters file with

openssl dsaparam -out slot01.prm key-length

where key-length is the size of the key you wish to be

generated (normally 1024.)

3. Generate the public and private keys with

openssl dsaparam -in slot01.prm -out slot01.key -genkey

4. Create a configuration file in the format

[req]

default_bits = key-length

distinguished_name = req_dn

[req_dn]

organizationName = Enter organization name (eg,

company)

organizationName_value = organization-name

0.organizationalUnitName = Enter organizational unit

name (eg, section)

0.organizationalUnitName_value = organizational-unit-name

1.organizationalUnitName = Enter organizational unit

name (eg, section)

1.organizationalUnitName_value = organizational-unit-name

localityName = Enter your station name

localityName_value = station-name

commonName = Enter your site name

commonName_value = site-name

You should

only replace the words highlighted like this in

the above file. The lines ending Enter your site name, etc.,

48

Issue F