Manualshelf

Installation guide

ManualsBrandsAcano ManualsComputer equipmentSolution
11121314151617181920
Creating and Installing Certificates
Acano solution: Deployment Guide R1.2 76-1006-06-K
Page 19
2. Sign in to the MMP and generate the private key and certificate signing request by typing:
pki csr <key/cert basename> <CN> [<OU> <O> <L> <ST> <C>]
where:
<key/cert basename> is a string identifying the new key and CSR (e.g. "xmpp" results in
"xmpp.key" and "xmpp.csr" files)
<CN> is the commonName which should be on the certificate. Use the FQDN defined in
DNS A record as the Common Name. Failure to do this will result in browser certificate
errors.
OU is Organizational Unit, O is Organization, L is Locality, ST is State and C is Country.
These parameters are optional.
3. Send the CSR to a Certificate Authority (CA) such as Verisign who will verify your identity
and issue a signed certificate (see step 2 in Appendix D). This is useful for your production
platform.
4. Transfer the certificate file (e.g. xmpp.crt) to the MMP using SFTP.
5. On the Acano Server the XMPP license key file (license.dat) should have been pre-installed;
check it is visible in the list of files as shown below. If it is missing contact
support@acano.com and let us know the serial number of your server.
On a virtualized deployment, you must upload license.dat yourself (in the same way as the
certificate and key files). If you have not done so already, contact support@acano.com to
obtain this file. See the Virtualized deployment specific pre-requisites.
3.5 Installing the Web Bridge Certificate
The Web Bridge is used by the Acano clients. If you are testing the Acano clients follow the
steps below. You will also need to set the network interface for the Web Bridge in section 4.8.
Note: If you are not using the Acano clients including the WebRTC Client, skip this section.
1. Create DNS A record for the Web Bridge and set it to the IP Address of the Ethernet
interface you want to use.
2. Create a certificate and private key for the Web Bridge (using the FQDN defined in DNS A
record as the Common Name). See the previous section for instructions.
Private key can use the .key extension (example: webbridge.key)
Certificate can use the .crt extension (example: webbridge.crt)