This section explains the procedure for creating the certificates that are used during HTTPS communication performed by Resource Orchestrator.
-
Execute the following commands to back up the existing certificates.
> cd "C:\Program Files (x86)\Resource Orchestrator\SVROR\Manager\sys\apache\conf"
> ..\..\..\bin\rcxadm mgrctl stop
> copy ssl.crt\server.crt ssl.crt\server.crt.org
> copy ssl.key\server.key ssl.key\server.key.org
-
Execute the following command to create the new certificates.
> ..\bin\openssl.exe req -new -x509 -nodes -sha256 -newkey rsa:2048 -out ssl.crt\server.crt -keyout ssl.key\server.key -days 5479 -config openssl.cnf
-
Press the [Enter] key when prompted to do so.
Example
> cd "C:\Fujitsu\ROR\SVROR\Manager\sys\apache\conf"
> ..\..\..\bin\rcxadm mgrctl stop
> copy ssl.crt\server.crt ssl.crt\server.crt.org
> copy ssl.key\server.key ssl.key\server.key.org
> ..\bin\openssl.exe req -new -x509 -nodes -sha256 -newkey rsa:2048 -out ssl.crt\server.crt -keyout ssl.key\server.key -days 5479 -config openssl.cnf
Loading 'screen' into random state - done
Generating a 2048 bit RSA private key
.................++++++
................................++++++
writing new private key to 'ssl.key\server.key'
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) []:
State or Province Name (full name) []:
Locality Name (eg, city) []:
Organization Name (eg, company) []:
Organizational Unit Name (eg, section) []:
Common Name (eg, YOUR name) [localhost]: IP_address or Host_name (*)
Email Address []:
>..\..\..\bin\rcxadm mgrctl start
* Note: Enter the IP address or host name (FQDN) to be entered in the Web browser.
