1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Switch
  5. AJ732A - MDS 9134 Fabric Switch
  6. Configuration manual

Cisco AJ732A - MDS 9134 Fabric Switch Configuration Manual page 251

Cisco mds 9000 family storage media encryption configuration guide - release 4.x (ol-18091-01, february 2009)
Hide thumbs Also See for AJ732A - Cisco MDS 9134 Fabric Switch:
Table of Contents

Advertisement

Appendix C
Provisioning Self-Sign Certificates
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m
switch:./createSmeCerts.tcl a
Dir to store certificates [] :.
Openssl path [/usr/bin] :
RootCA CN [RootCA] :SMECA
Trust Pass Phrase [nbv123] :nbv123
Certificate Validity days [365] :1024
Trust point name [sme_ca] :
Generating CA certificate ...
Generated CA certificate /users/filename1/SSL script/./cacert.pem
Create switch certificate and configure trustpoint ...
Switch IP [] :switchname
username [] :admin
password [] :
Created certificate and configured trustpoint for switch: ips-hac4
Do you want to configure another switch? (y/n) [n] :n
Generating KMC certificate ...
KMC Common Name [] :KMC
Generated KMC certificate: /users/filename1/SSL script/./sme_KMC_server.p12
switch:./createSmeCerts.tcl k
Dir where RootCA certificate is stored [] :.
Reading properties from /users/filename1/SSL script/./sme_cert.properties
Generating KMC certificate ...
KMC Common Name [] :FM
Generated KMC certificate: /users/filename1/SSL script/./sme_FM_server.p12
switch:ls
cacert.pem
cacert.srl
createSmeCerts.tcl*
createSmeCerts.tcl.orig*
openssl.conf
switch:
Use JAVA keytool (JRE 1.6) to generate Java keystores.
Step 2
"C:\Program Files\Java\jre1.6.0_02\bin\keytool.exe" -importkeystore -srckeystore
sme_KMC_server.p12 -srcstoretype PKCS12 -destkeystore sme_kmc_server.jks -deststoretype
JKS
"C:\Program Files\Java\jre1.6.0_02\bin\keytool.exe" -importkeystore -srckeystore
sme_FM_server.p12 -srcstoretype PKCS12 -destkeystore sme_fm_server.jks -deststoretype JKS
"C:\Program Files\Java\jre1.6.0_02\bin\keytool.exe" -importcert -file cacert.pem -keystore
sme_kmc_trust.jks -storetype JKS
"C:\Program Files\Java\jre1.6.0_02\bin\keytool.exe" -importcert -file cacert.pem -keystore
fmtrust.jks -storetype JKS
Step 3
Run the following commands for the Fabric Manager server:
Copy sme_fm_server.jks to <FMINSTALL>/jboss/server/default/conf/fmserver.jks
Copy fmtrust.jks to <FMINSTALL>/jboss/server/default/conf/fmtrust.jks
Go to <FMInstall>/bin
OL-18091-01, Cisco MDS NX-OS Release 4.x
a
Generate all certificates and configure switch
h
Print this usage screen
openssl_FM.conf
openssl_KMC.conf
privkey.pem
README*
sme_cert.properties
Cisco MDS 9000 Family Storage Media Encryption Configuration Guide
Generating and Installing Self-Signed Certificates
sme_FM_server.cert
sme_KMC_server.csr
sme_FM_server.csr
sme_KMC_server.key
sme_FM_server.key
sme_KMC_server.p12
sme_FM_server.p12
sw_ips.csr
sme_KMC_server.cert
sw_ips.pem
C-5

Advertisement

Table of Contents
loading

Related Manuals for Cisco AJ732A - Cisco MDS 9134 Fabric Switch

Related Products for Cisco AJ732A - Cisco MDS 9134 Fabric Switch

This manual is also suitable for:

Ap775a - nexus converged network switch 5010Ap776a - nexus converged network switch 5020Cisco mds 9124 - fabric switchCisco mds 9020 - fabric switchCisco mds 9120 - fabric switchCisco mds 9140 - fabric switch ... Show all

Table of Contents