Apple Mac OS X Server Version 10.4 or Later Manual de usuario descargar pdf (Pagina 97)

Appendix Certificates and Security 97

12 Click Send Request.

13 Click Save.

14 When the CA replies to the email, it will include it in the text of an email.

15 Make sure the Identity is open from the Certificates tab, again.

16 Click Add Signed Certificate.

17 Copy the characters from “==Begin CSR==” to “==End CSR==” into the text box.

18 Click OK.

19 Click Save.

Creating a Self-Signed Certificate

Whenever you create an identity in the Certificate Manager, you’re creating a self-

signed certificate. Certificate Manager creates a private–public key pair in the system

keychain with the key size specified (512 - 2048 bits). It then creates the corresponding

self-signed certificate in the system keychain.

A Certificate Signing Request (CSR) is also generated at the same time that the self-

signed certificate is created. This isn’t stored in the keychain, but is written to disk at

/etc/certificates/cert.common.name.tld.csr, where “common.name.tld” is the Common

Name of the certificate that was issued.

To create a self-signed certificate:

1 In Server Admin, select the server which has services that support SSL.

2 Click Settings.

3 Select the Certificates tab.

4 Click the Add (+) button.

5 Fill out identity information.

The common name is the fully qualified domain name of the server which will use SSL-

enabled services.

6 Enter starting and ending validity dates.

7 Select a private key size (1024 bits is the default).

8 Enter a passphrase for the private key.

9 This passphrase should be more secure than a normal password.

It is recommended you use at least 20 characters, include mixed case, numbers and/or

punctuation, have no characters repeat, and having no dictionary terms.

10 Click Save.

1 2 ... 92 93 94 95 96 97 98 99 100 101 102 ... 112 113

Sin comentarios

Apple Mac OS X Server Version 10.4 or Later Manual de usuario Pagina 97