HP

HP Systems Insight Manager Technical Reference Guide

English
  Networking and Security  |  Server Certificates  |  Importing a CA-Signed Certificate   

Importing a CA-Signed Certificate

»Table of Contents
»Index
»Notices
»Introduction
»Product Overview
»Getting Started
»Discovery and Identification
»Users and Authorizations
»Networking and Security
»About Login
»About Secure Task Execution
»Configuring the System Link
»Configuring Login Events
»Configuring Browser Timeout Options
»Server Certificates
»Exporting a Server Certificate
»Editing a Server Certificate
»Creating a Server Certificate
»Importing a Server Certificate
»Creating a Certificate Signing Request
»Submitting a Certificate Signing Request
Importing a CA-Signed Certificate
»Synchronizing Certificates
»Replicating Trusted Certificates
»Trusted Certificates
»Monitoring Systems, Clusters, and Events
»Storage Integration
»Managing with Tasks
»Tools that Extend Management
»Partner Applications
»Reporting
»Administering Systems and Events
»Troubleshooting
»Reference Information
»Printable version
»Glossary
»Using Help
» Related Procedures
» Related Topics

After creating a Certificate Signing Request (CSR) and having it signed by a Certificate Authority (CA), you can import the signed certificate.

The only importable certificate format is PKCS #7 formatted certificates. If the certificate reply received from the CA is a single certificate, then first import a self-signed root certificate from the issuing CA into the HP Systems Insight Manager (HP SIM) Trusted System Certificates List. After importing the CA root certificate, the certificate reply can then be imported to serve as the HP SIM server certificate.

This process also replaces the local System Management Homepage certificate and private key and updates the certificate sharing directory with a new server certificate and private key.

HP SIM only supports importing certificates that have a public key size of 2046 bits or less.

To import the signed certificate reply from a CA:

  1. Select OptionsSecurityCertificatesServer Certificates, and then click [Import]. The Import Server Certificate section appears.

  2. Click more next to Import signed certificate reply from CA. The Import Signed Certificate Reply section appears below the Import Server Certificate section.

  3. Click [Browse] next to the Certificate filename field. The Choose file dialog box appears.

    1. Navigate to the location where the signed certificate is stored.

    2. Select the correct filename, and click [Open].

      The file name appears in the Certificate filename field.

  4. Click [Import]. The signed certificate is imported.

    After creating a CSR or importing the server certificate, reboot the HP SIM server for the HP SIM server certificate to be synchronized with the System Management Homepage certificate and the certificate sharing directory. Synchronizing the certificates prevents repeated browser security alerts when browsing to HP Insight Management Agent on the HP SIM server, which allows the HP SIM and the local System Management Homepage to update their Secure Sockets Layer (SSL) server certificates and private keys.

Related Procedures

» Server Certificates - Importing a Server Certificate
» Server Certificates - Creating a Certificate Signing Request
» Server Certificates - Submitting a Certificate Signing Request

Related Topics

» Networking and Security - Server Certificates
» HP Systems Insight Manager Technical Reference Guide - Networking and Security
» Tools that Extend Management - Installing OpenSSH
» Administering Systems and Events - Managing SSH Keys