サポートと今すぐチャット
サポートとのチャット

DR Series Software 4.0.4 - Administration Guide

Introducing the DR Series system documentation Introducing the DR Series system Setting up the DR Series system Configuring the DR Series system settings Managing containers Managing replications Monitoring the DR Series system Using GlobalView Configuring and using Rapid NFS and Rapid CIFS Configuring and using Rapid Data Access with NetVault Backup and with vRanger Configuring and using RDA with OST
Understanding RDA with OST Guidelines Terminology Supported RDA with OST software and components Best Practices: RDA with OST and the DR Series System Setting client-side optimization Configuring an LSU Installing the RDA with OST plug-in Configuring DR Series system information using NetBackup Backing up data from a DR Series system with NetBackup Using Backup Exec with a DR Series system (Windows) Understanding the OST CLI commands Understanding RDA with OST Plug-In Diagnostic Logs Collecting diagnostics by using a Linux utility Guidelines for gathering media server information
Configuring and using VTL Configuring and Using Encryption at Rest Support, maintenance, and troubleshooting Supported Ports in a DR Series system About us

Installing an SSL certificate

To install an SSL certificate, complete the following steps:
  1. In the left navigation menu, click System Configuration→ SSL Certificate.
  2. Next to Certificate File Location, click Browse to locate and select the SSL certificate on your system that you want to install.

    NOTE: Only .pem formatted SSL certificates are supported.

  3. On the SSL Certificate page, click Install Certificate.
  4. In the Install SSL Certificate dialog box, click Continue.

    Unless corrupted or expired, certificates files of .pem format type with less than 2048-bit encryption should successfully verify.

  5. In the certificate Validation dialog box, click Continue.
    In the event you see the Certificate Verification Failed dialog box, clicking on “Continue” here will generate a connection reset in the browser. You will still be allowed to continue with certificate installation. Upon successful installation of a certificate, an HTTP server restart is performed, and the browser will move to a connection reset state.

    NOTE: If your browser cannot connect to a DR Series system after a certificate installation, you may need to reset the certificate from the command line interface (CLI) using “maintenance --configuration -- reset_web_certificate”. Refer to the DR Series Command Line Reference Guide for more information.

  6. Click either the page reload icon or the back-arrow on the browser to restore the page.

Resetting the SSL Certificate

If you have installed a custom SSL certificate, you can reset the SSL certificate back to the factory-installed, self-signed certificate. To reset an SSL certificate, complete the following steps:

  1. In the left navigation menu, click System Configuration→ SSL Certificate.
  2. On the Action menu in the upper right corner of the page, click Reset SSL Certificate.

    NOTE: You can also use the command line interface (CLI) command, maintenance -- configuration --reset_web_certificate. Refer to the DR Series Command Line Reference Guide for more information

Installing a CA certificate

You can add a custom Certificate Authority (CA) certificate chain in the DR Series system GUI. To install a Certificate Authority (CA) Certificate file, complete the following steps:
  1. In the left navigation menu, click System Configuration→ SSL Certificate.
  2. Next to Certificate Authority (CA) Certificate File Location, click Browse to locate and select the CA certificate on your system that you want to install.

    NOTE: When adding a CA certificate, you should add from the root of the CA chain first.

Generating a CSR

You can generate a certificate signing request (CSR) from the SSL Certificate page. A certificate authority (CA) can use the CSR to create an SSL certificate for you. This CSR will contain information to be included in the certificate, such as organization name, common name (domain name), locality, and country. It also contains the public key that will be included in the certificate. Generating a new CSR generates a new private key therefore certificates signed with a previously generated CSR will no longer be installable.

To generate a CSR, complete the following steps:

  1. In the left navigation menu, click System Configuration→ SSL Certificate.
  2. On the Action menu in the upper right corner of the page, click Generate CSR. The Generate CSR pane is displayed.
  3. Enter the following required information in the form:
    • Common Name - The domain to be secured by the certificate.
    • Organization Name - The organization's legal business name.
    • Organization Unit - A department in the organization.
    • Locality - The business location.
    • State Name - The state/province of the business location
    • Country Code - The country of the business location.
    • Email - A contact email address.
    • Encryption - Select one of the following options: 2048-bit encryption or 4096 encryption. The default is 2048.
  4. Click Generate.

    The Certificate request output will appear in the window. You can copy and paste the CSR to the CA's web site CSR page, or you can save the CSR to a file

    NOTE: Every time a CSR is generated, a new private key is generated and stored on the DR Series system. When the signed certificate is returned from the CA, and you attempt to install the signed certificate, a verification that the installed signed certificate matches the private key is performed. If the installed certificate does not match the private key, the certificate installation will fail due to private key match failure.  You should be careful not to run a subsequent CSR generation while your initial CSR is being signed by a CA, as the returned certificate will no longer match the private key.

  5. Click Save to File to save it to a file.
関連ドキュメント

The document was helpful.

評価を選択

I easily found the information I needed.

評価を選択