attribute=sslencryption |
setting=autonegotiate | 128bitorhigher |
autonegotiate: Sets the
encryption levels automatically based on your web browser settings.
128bitorhigher: Sets the encryption levels
to 128-bit or higher.
-
NOTE: This attribute is
deprecated in the future releases, use
ciphers instead.
|
attribute=seturl |
host=<
string> port=<
value>
|
Enables you to configure the Distributed
Web Server (DWS) URL launch point, for accessing the management node.
This command is used when Server Administrator Instrumentation Service
and Remote Enablement are installed on the same system and the Server
Administrator GUI is accessed using the DWS URL.
-
NOTE: This command is not
supported if the web server is present on the same system.
|
attribute=signalgorithm |
setting=MD5 | SHA1 | SHA256 | SHA512 |
MD5: Sets the key signing
algorithm to MD5.
SHA1: Sets the key signing
algorithm to SHA1.
SHA256: Sets the key
signing algorithm to SHA256.
SHA512: Sets
the key signing algorithm to SHA512.
|
attribute=setjre |
jreversion=bundled | value |
bundled: Sets the version
bundled with Server Administrator. This is the default value.
value: Sets the provided version, which is available
on the system. To obtain the available versions on the system, type
omreport preferences webserver attribute=getjrelist. For
more details, see
omreport preferences
webserver
.
|
attribute=exportcsr |
N/A |
Exports a Certificate Signing Request
(CSR) file. The exported .csr file is saved at
<Server
Administrator installation directory>\apache-tomcat\temp
.
|
attribute=gennewcert |
cn=<
common name> org=<
organization
name
> ou=<
organization unit name> location=<
location
name
> state=<
state name> country=<
country name> validity=<
validity> keysize=<512 | 1024 | 2048> algorithm=<MD5
| SHA1 | SHA256 | SHA512> webserverrestart=<true | false>
|
Creates a new self-signed certificate
for the SSL communication between the server running Server Administrator
and the web server.
-
NOTE: The country name (
country name) must be of two characters,
and validity (
validity) must be in days. For country
names, see the table,
Country names and codes, provided later
in this section. The
validity,
keysize, and
algorithm parameters are optional. If you
do not set any value for the optional parameters, Server Administrator
assigns default values to the optional parameters. The default values
of
validity,
keysize, and
algorithm are
1095,
2048, and
SHA512 respectively. Restarting Server Administrator
web server is optional, but the generated certificate comes to effect
only after restarting the web server.
|
attribute=uploadcert |
certfile=<
path of the certificate file> type=<pkcs12> password=<
password of the certificate file> webserverrestart=true | false
|
Allows you to import a PKCS#12 keystore
that replaces the private key and certificate used in Server Administrator
web server. PKCS#12 is public keystore that contains a private key
and the certificate for a web server. Server Administrator uses the
Java KeyStore (JKS) format to store the SSL certificates and its private
key. Importing a PKCS#12 keystore to Server Administrator deletes
the keystore entries, and imports a private key and certificate entries
to the Server Administrator JKS.
-
NOTE: If you are importing
a PKCS#12 keystore, specify the type and password of the certificate.
Restarting Server Administrator web server is optional, but the uploaded
certificate comes to effect only after restarting the web server.
-
NOTE: An error message
is displayed if you either type an invalid PKCS file name or an incorrect
password.
|
attribute=<ciphers> |
setting=<valid ciphers text value> |
Allows you to choose the ciphers
that support the web server while configuring. SSL provides a secure
connection between the web server and the browser. The connection
service does not start if an invalid cipher suite is set.
-
NOTE: If an incorrect cipher
value is set and the connection service fails to start, use the CLI
command prompt or manually set the valid ciphers and restart the connection
service.
|
attribute=<sslprotocol> |
setting=<valid sslprotocol values are TLSv1|
TLSv1.1| TLSv1.2| TLSv1, TLSv1.1| TLSv1.1, TLSv1.2| TLSv1, TLSv1.1,
TLSv1.2
|
Allows you to set the web server
SSL protocols configuration from the valid values. The changes to
take effect after web server restart.
|
attribute=<port> |
setting=<valid port value> |
Sets the number of secure ports
that you want Server Administrator to use. The port value range from
1024 to 65535. The default port for Server Administrator is
1311.
|
attribute=<ipaddress> |
setting=<valid Binding IPAddress value> |
Sets by default the web server
to incoming browser requests on
ALL IP addresses. However,
for increased security you can specify a single IP address or,
ALL IP addresses. An error message is displayed on an invalid
entry of the configurable Bind List of IP Address. For the changes
to take effect, restart the web server.
|
attribute=<sessiontimeout> |
setting=<valid Session Timeout value between
1– 30>
|
Allows Server Administrator to time-out
if there is no user input for a specified number of minutes. Users
whose sessions time-out must log in again to continue.
|