You can import a signed certificate when the next signed certificate associated with the persona is available for download. As soon as the certificate is imported, it becomes the current certificate (assuming that the date is valid).
NOTE: This task is not required if you are using the Control Station to sign the certificate. The Control Station automatically returns the signed certificate to the Data Mover.
Steps
Obtain the signed certificate (for example, cert.pem) from the CA.
Query all Data Movers to determine which personas are waiting for a signed certificate:
To determine to which persona to import the certificate, match the certificate’s subject with the value of the Request Subject field for those personas whose Next State is Request Pending.
Import the signed certificate to the waiting persona by using this command syntax:
<movername> = name of the physical Data Mover with which the persona is associated.
<persona_name> = name of the persona.
<persona_id> = ID of the persona. The ID is generated when the persona is created.
NOTE: The signed certificate can be in either DER or PEM format. You can only paste text in PEM format at the command prompt. If you specify -filename and provide a path, you can import a CA-signed certificate in either DER or PEM format.
server_2
id=1
name=default
next state=Not Available
Current Certificate:
id = 1
subject = CN=name;CN=1.2.3.4
issuer = O=Celerra Certificate Authority;CN=eng173100
start date = 20070606183824Z
end date = 20070706183824Z
serial number = 05
signature alg. = sha1WithRSAEncryption
public key alg. = rsaEncryption
public key size = 4096
version = 3
NOTE: Typically, after a certificate is imported, it immediately becomes the current key set and certificate, and the Next State field is shown as Not Available. If the imported certificate is not valid (for example, its time stamp is several minutes or more ahead of the Data Mover), the imported key set and certificate remain the next key set and certificate, and the Next State field is shown as Available until such time as the key set and certificate become valid.
Data is not available for the Topic
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\