This post is more than 5 years old
4 Posts
0
6070
How to fetch the CSR generated on Data Domain Management Center
Hello,
In my corporation we have strict rules about https, and attempt to browse services protected by unrecognized or untrusted source is prevented
Through the CLI, we managed to create a certificate signing request
but we didn't find any guideline on how to fetch this request and feed it to our PKI.
Since the appliance is a stripped down version of DDOS, nfs export or cifs share are unavailable.
We've tried FTP, FTPS, SCP , but all those protocol are failing to fetch the text file located at :
/ddvar/certificates/CertificateSigningRequest.csr
so to resume we are looking for ways:
- To fetch that file
- Sign the request with our PKI
- Copy the answer back to the appliance
- Finish the signing request workflow, and configure the https service with the signed version
- Deactivate http and keep only the secure version
SandrinoCostant
4 Posts
0
June 8th, 2017 04:00
Well I've finally found why SCP was not working
The root of the issue was in our SSH client suite of tools. (Putty/WinSCP)
The interactive session was working flawlessly :
So, we were unaware of any incompatibilities between the client and the sshd daemon on the appliance:
--> Winscp , pscp, etc are all failing to transfer the file:
But the same transfer from a linux client is working :
--> the rest of the workflow was successful
adminaccess certificate import host application https file signed-certificate.pem
ble1
2 Intern
2 Intern
•
14.3K Posts
0
June 8th, 2017 03:00
You should move you question to Data Domain forum for appropriate audience.
cb1ocker
1 Message
0
June 8th, 2017 13:00
Thank you for posting this solution, I've been trying to get an answer to this same exact question from support for over a week.