Cisco Headend System Release 2.7 Installation Guide
Install the Certificates on the DNCS
4036043 Rev B
105
File
Permission
Owner:
Group
Comments
server.key.secure 400
-r-------- root:root
This file is a passphrase-protected
server key, suitable for copying/backup
etc.
The following command extracts the
server.key file if you choose to copy
server.key.secure from another DNCS
(and did not copy the server.key file):
openssl rsa –in
server.key.secure –out
server.key
server.key.secure –out
server.key
cachain.crt
444
-r--r--r-- root:root
This can be the same as server.crt so
you can copy server.crt onto
cachain.crt.
cacert.pem
444
-r--r--r-- root:root
The CA_NSO.crt file is concatenated
into this file by this command:
cp /etc/opt/certs/cacert.pem
/etc/opt/certs/cacert.pem.`da
te +%m%d%y`
/etc/opt/certs/cacert.pem.`da
te +%m%d%y`
cat CA_NSO.crt.txt >>
/etc/opt/certs/cacert.pem
/etc/opt/certs/cacert.pem