HP XP P9000 Command View Advanced Edition Suite Software 7.6.1-00 Administrator Guide
Self-signed certificate for object operations supplied with the product
The self-signed certificate for object operations that comes with Device Manager uses the
SHA256withRSA algorithm and has a key size of 2,048 bits.
The self-signed certificate is stored in the following keystore file (whose password is wbemssl):
In Windows:
installation-folder-for-the-Device-Manager-server\Server\wsi\server\
jserver\bin\.keystore
In Linux:
installation-directory-for-the-Device-Manager-server/Server/wsi/server/
jserver/bin/.keystore
Disabling two-way authentication
Use HiKeytool to disable two-way authentication for object operations or event indications.
To disable two-way authentication:
1. Stop the P9000 Command View AE Suite product services.
2. Execute the following to start HiKeytool.
In Windows:
installation-folder-for-the-Device-Manager-server\Server\
HiKeytool.bat
In Linux:
installation-directory-for-the-Device-Manager-server/Server/
HiKeytool.sh
3. In the main menu, enter 2 (SSL configuration for SMI-S).
4. In the SMI-S main menu, enter 1 (Set Security Level for Object Operations) or 2 (Set Security Level
for Event Indications) .
5. Enter 1 (SSL without two-way authentication)
The MOF file will be compiled and the SMI-S main menu will appear again.
6. Start the P9000 Command View AE Suite product services.
You must stop the Device Manager Server before specifying this setting.
1) SSL without two-way authentication
2) SSL with two-way authentication
>1
Security232