Manualshelf

Installation manual

ManualsBrandsDell Manualscomputer componentsOpenManage Server Administrator Version 7.0
31323334353637383940
Preinstallation Setup 39
Creating Server Certificate for WSMAN
You can either create a new certificate for WSMAN or reuse an existing
certificate.
Creating a New Certificate
You can create a new server certificate for WSMAN by executing the
owsmangencert.sh script located at /etc/openwsman. This script is provided
by the openwsman RPM. Follow the steps in the wizard to create the server
certificate.
Reusing an Existing Certificate
If you have a self-signed or CA-signed certificate, you can use the same
certificate for the openwsman server by updating the ssl_cert_file and
ssl_key_file values, grouped under [server] tag, in
/etc/openwsman/openwsman.conf with your existing certificate values.
Configuring CRL for the openwsman Client
You need to configure the Certificate Revocation List (CRL) used by Server
Administrator Web Server. To do this:
1
Mention a valid CRL file in
/etc/openwsman/openwsman_client.conf
.
2
If left blank, the CRL check is ignored.
NOTE: CRL support is only present on SUSE Linux Enterprise Server version 11 and
Red Hat Enterprise Linux Server version 5 update 5. For other operating systems,
contact your operating system vendor to provide the required CURL library with CRL
support.
Running sfcb and openwsman
NOTE: On Red Hat Enterprise Linux 6, replace sfcb with sblim-sfcb.
Run sfcb and openwsman:
/etc/init.d/sfcb start
/etc/init.d/openwsmand start