HP-UX IPSec Version A.03.02.02 Administrator's Guide HP-UX 11i version 2 and HP-UX 11i version 3 (762800-001, April 2014)

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software

Example....................................................................................................................105

Submitting the Certificate Signing Request to the CA............................................................105

Step 2: Adding the Local Certificate........................................................................................105

ipsec_config add mycert -file Syntax...................................................................................106

-file mycert_filename ............................................................................................106

Example................................................................................................................106

ipsec_config add mycert -ldap Syntax.................................................................................106

-ldap server ............................................................................................................106

-port port_number ...................................................................................................106

-base search_base ..................................................................................................107

-filter search_filter ..............................................................................................107

-user user -password password..................................................................................107

Examples...................................................................................................................107

Step 3: Adding the CA Certificates.........................................................................................107

Multiple Level CAs...........................................................................................................108

ipsec_config add cacert -file Syntax....................................................................................108

-file cacert_filename ............................................................................................108

Examples...................................................................................................................108

ipsec_config add cacert -ldap Syntax.................................................................................108

-ldap server ............................................................................................................108

-port port_number ...................................................................................................108

-base search_base ..................................................................................................108

-filter search_filter ..............................................................................................109

-user user -password password..................................................................................109

Examples...................................................................................................................109

Step 4: Adding the CRL.........................................................................................................109

Multiple Level CAs...........................................................................................................109

ipsec_config add crl -file Syntax.........................................................................................110

-file crl_filename ..................................................................................................110

Example....................................................................................................................110

ipsec_config add crl -ldap Syntax.......................................................................................110

-ldap server.............................................................................................................110

-port port_number ...................................................................................................110

-base search_base ..................................................................................................110

-filter search_filter ..............................................................................................110

-user user -password password..................................................................................110

Examples...................................................................................................................111

Step 5: Retrieving the CRL Using cron......................................................................................111

Configuration Example..........................................................................................................111

Managing Certificate Data....................................................................................................112

Certificate Storage...........................................................................................................112

Viewing the Local System Certificate...................................................................................112

Viewing the CA Certificate and CRL Files............................................................................113

Deleting the Local System Certificate...................................................................................114

Deleting the CA Certificate and CRL Files............................................................................114

6 Administering HP-UX IPSec.......................................................................115

Starting HP-UX IPSec.............................................................................................................115

ipsec_admin -start Syntax..................................................................................................115

Additional Options......................................................................................................115

Configuring HP-UX IPSec to Start Automatically.........................................................................115

ipsec_config add startup Syntax.........................................................................................115

Stopping HP-UX IPSec...........................................................................................................116

ipsec_admin -stop Syntax..................................................................................................116

Changing HP-UX IPSec Operating Parameters..........................................................................116

8 Contents