Cisco Headend System Release 2.7 Installation Guide
Appendix C
SSL Configuration for the LoadPIMS Web Service
108
4038415 Rev A
File
Permission
Owner:
Group
Group
Comments
server.key.secure 400
-r-------- root:root
This file is a passphrase-protected
server key, suitable for copying/backup
etc.
The following command extracts the
server.key file if you choose to copy
server.key.secure from another DNCS
(and did not copy the server.key file):
server key, suitable for copying/backup
etc.
The following command extracts the
server.key file if you choose to copy
server.key.secure from another DNCS
(and did not copy the server.key file):
openssl rsa –in
server.key.secure –out
server.key
server.key.secure –out
server.key
cachain.crt
444
-r--r--r-- root:root
This can be the same as server.crt so
you can copy server.crt onto
cachain.crt.
you can copy server.crt onto
cachain.crt.
cacert.pem
444
-r--r--r-- root:root
The CA_NSO.crt file is concatenated
into this file by this command:
into this file by this command:
cp
/etc/opt/certs/cacert.pem
/etc/opt/certs/cacert.pem.
`date +%m%d%y`
/etc/opt/certs/cacert.pem
/etc/opt/certs/cacert.pem.
`date +%m%d%y`
cat CA_NSO.crt.txt >>
/etc/opt/certs/cacert.pem
/etc/opt/certs/cacert.pem