Unsolved
This post is more than 5 years old
4 Posts
0
4834
June 20th, 2011 09:00
Adding SSL Certificate to Celerra
We are trying to remediate some audit scan issues and found that our Celerra show up in scans. Some items we around SSL Certs.
| SSL Certificate - Self-Signed Certificate |
| SSL Certificate - Improper Usage Vulnerability |
| SSL Certificate - Signature Verification Failed Vulnerability |
When I spoke to a tech briefly, his response was, “I was not able to locate a way to load a signed certificate in the Celerra GUI, that would mean that you would need to load the certificate like you would on any other apache server.“
Has anyone done this?
How does one go about getting the cert onto the Celerra and then installing it?
0 events found
No Events found!
Rainer_EMC
6 Operator
•
8.6K Posts
0
June 20th, 2011 12:00
See the Security Configuration Guide on VNX™ for File manual under Configuring PKI on how generate / install certificates
Rainer_EMC
6 Operator
•
8.6K Posts
0
December 2nd, 2011 19:00
Sound like a time problem
Check the date on the cert and your system date
Jeffey1
6 Operator
•
2.8K Posts
0
December 5th, 2011 23:00
OR
If you do not have access to the Unisphere Certificate Warning message, you can verify the "Valid From" date by accessing the Control Station console, examining the following file, and setting the PC clock ahead of the "Not Before" date indicated:
# cat /nas/site/CA/ca_certificate.pem
Certificate:
-----edited----
Issuer: O=Celerra Certificate Authority, CN=emcnas_i0
Validity
Not Before: Mar 16 12:49:14 2011 GMT
Not After : Mar 21 12:49:14 2016 GMT
# /nas/sbin/nas_ca_certificate -generate
Note: The start date of the new certificate should be equal to seven (7) days before the current system date, and reflected in GMT time.