search

Dell Data Protection | Encryption Manual de usuario Pagina 43

  • Descarga
  • Añadir a mis manuales
  • Imprimir
  • Pagina
    / 80
  • Tabla de contenidos
  • SOLUCIÓN DE PROBLEMAS
    •
  • MARCADORES
    • Valorado. / 5. Basado en revisión del cliente
Vista de pagina 42
Enterprise Server Installation and Migration Guide 43
Dell Security Server in DMZ Mode Configuration
If the Dell Security Server is deployed in a DMZ and a private network, and only the DMZ server has a domain certificate from a
trusted Certificate Authority (CA), some manual steps are needed to add the trusted certificate into the Java keystore of the
private network Dell Security Server.
If a trusted certificate is being used, omit this section and continue to
APNs Enrollment
.
NOTE: We highly recommend the use of domain certificates from a trusted Certificate Authority for both DMZ and
private network servers.
Use Keytool to Import the DMZ Domain Certificate
IMPORTANT: Backup the existing Dell Security Server cacerts before continuing with the Keytool instructions.If a
configuration error is made, you can revert back to the saved file.
Assumptions
Dell Security Server was installed with an untrusted certificate.
Dell Security Server in DMZ Mode was installed using a signed certificate (Entrust, Verisign, etc.)
•A .pfx certificate file is available. If your certificate needs to be converted to .pfx, see How to Export a Certificate to .PFX Using
the Certificate Management Console.
Process
1
Add Keytool to the system path.
set path=%path%;<Dell Java Install Dir>\bin
2
Use Keytool to list the contents of the trusted domain certificate that you want to import. Take note of the Alias Name listed.
keytool -list -v -keystore “C:\<path-to-pfx>\SignedCert.pfx -storetype PKCS12
3
Use Keytool to import the contents of the signed certificate into the Dell Security Server’s cacerts file:
keytool -importkeystore -v -srckeystore "C:\<path-to-source-file>\SignedCert.pfx"
-srcstoretype PKCS12 -srcalias AliasName -destkeystore "C:\<path-to-dest-cacert>\cacerts"
-deststorepass changeit -destalias AliasName -destkeypass changeit
For -srcalias, you will need to gather this information from the exported contents of the signed certificate.
For -destalias, this can be any location you choose.
4
Backup and replace the current cacerts file in the <Security Server install dir>\conf\ directory with this newly created cacerts
file on the Dell Security Server.
Modify application.properties File
Modify the application.properties file to specify the alias of the signing cert.
1
Go to
<Security Server install dir>\conf\application.properties
2
Modify the follow information:
keystore.alias.signing=<Change this value to the value of step 3 above for
-destalias
>
3
Restart the Dell Security Server Service.
Continue to
APNs Enrollment
.
Vista de pagina 42
1 2 ... 38 39 40 41 42 43 44 45 46 47 48 ... 79 80

Comentarios a estos manuales

Sin comentarios
Relacionado con productos y manuales para Software de base de Dell Data Protection | Encryption
Software de base de Dell Active Fabric Manager Manual de instalación   (40 paginas)
Software de base de Dell Vizioncore Manual de usuario   (36 paginas)
Software de base de Dell PowerVault 200S Especificaciones   (32 paginas)
Software de base de Dell H730P Manual de usuario   (18 paginas)
Software de base de Dell H730P Manual de usuario   (19 paginas)
Software de base de Dell POWEREDGE R515 Manual de usuario   (45 paginas)
  • Teresonic SERO Cyron-lighting Gear Head Legrand
  • Ryobi Cortadoras De Césped Sharp Soportes De Techo De Panel Plano Revox Amplificadores de audio Sennheiser Monitores de vídeo para bebé Martian Watches Relojes
  • Sony DVP-PQ1 Sony HDR-TG7VE Electrolux EOC3430FOX Whirlpool BSNF 9121 OX
  • Printronix 179006-001 Especificaciones Qtech QDSL-1040WU-FON Manual de usuario Bosch BFL524MS0 Manual de instrucciones Supra SNP-351 Manual de usuario Sharp KC-C150U Manual de usuario