HP XP P9000 Command View Advanced Edition Suite Software 7.6.1-00 Administrator Guide
ServerName example.com
:
Listen 23015
#Listen [::]:23015
SSLDisable
SSLSessionCacheSize 0
#Listen 23016
#Listen [::]:23016
#<VirtualHost *:23016>
# ServerName example.com
# SSLEnable
# SSLProtocol SSLv3 TLSv1
# SSLRequiredCiphers AES256-SHA:AES128-SHA:DES-CBC3-SHA
# SSLRequireSSL
# SSLCertificateFile /opt/CVXPAE/Base/httpsd/conf/ssl/server
/httpsd.pem
# SSLCertificateKeyFile /opt/CVXPAE/Base/httpsd/conf/ssl/server
/httpsdkey.pem
# SSLCACertificateFile /opt/CVXPAE/Base/httpsd/conf/ssl
/cacert/anycert.pem
# SSLSessionCacheTimeout 3600
#</VirtualHost>
#SSLCacheServerPort /opt/CVXPAE/Base/httpsd/logs/gcache_port
#SSLCacheServerPath /opt/CVXPAE/Base/httpsd/sbin/gcache
#SSLCacheServerRunDir /opt/CVXPAE/Base/httpsd/logs
Configuring an SSL server (Device Manager server)
To use the Device Manager server as an SSL server, you need to prepare a private key and server
certificate.
Creating a key pair and a self-signed certificate for Device Manager server
To create a key pair and a self-signed certificate in the Device Manager server, from the HiKeytool
main menu, select SSL configuration for Device Manager Server, and then Make KeyPair/Self-Signed
Certificate.
Use the default values unless you are either very familiar with the field of cryptography and Java
security or are otherwise instructed. HP recommends that you use a self-signed certificate only for
testing encrypted communications.
Operations to complete in advance
• Log in as a user with Administrator permissions (for Windows) or as a root user (for Linux).
• Delete the existing key pair (when re-creating a key pair).
A keystore can contain only one key pair. A keystore containing two or more key pairs may cause
a problem when the Device Manager server is running in secure mode.
Information to collect in advance
• Version of the Web browser used on the management client (for operation in advanced security
mode)
Administrator Guide 191