sysconf installCert
Installs a signed certificate file as the appliance's server certificate (renaming to and replacing server.pem). The certificate must be signed, base64-encoded, and PEM-formatted.
NOTE This feature requires Luna Appliance Software 7.7.0.
User Privileges
Users with the following privileges can perform this command:
>Admin
Syntax
sysconf installCert <filename>
Argument(s) | Shortcut | Description |
---|---|---|
<filename> |
Specifies the filename of the signed certificate. |
Example
lunash:>sysconf installCert signed_server.pem Attempting to install signed_server.pem: Certificate: Data: Version: 3 (0x2) Serial Number: 15:00:00:00:1e:e5:dd:d2:71:5e:0f:0c:9a:00:00:00:00:00:1e Signature Algorithm: sha1WithRSAEncryption Issuer: CN=OTT1-TITAN-CA Validity Not Before: May 28 16:47:09 2019 GMT Not After : May 28 16:57:09 2020 GMT Subject: C=CA, ST=ON, L=Ottawa, CN=myLuna Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b1:46:cc:c8:70:70:81:89:a8:22:dd:ac:ce:8f: 73:c2:77:29:1f:b5:a2:49:de:d3:b3:03:1c:e2:ba: 6a:3e:dc:ba:61:d3:88:9c:9e:74:5c:82:9e:1e:64: c7:22:54:e2:6d:99:66:42:9f:e5:b8:87:d6:d4:59: 89:0d:88:39:7c:37:ef:42:b3:51:f2:21:5f:eb:de: ed:d6:08:84:af:9c:b7:c7:55:6c:0a:46:85:d9:0c: 5a:4d:cf:2d:21:79:fc:83:12:c3:d5:ec:de:4c:39: 4d:64:ff:07:28:7e:d0:ab:ff:b7:e6:fe:41:76:8b: 4b:4b:b1:14:f2:42:6c:4b:92:00:6b:81:1f:30:8e: 48:4d:91:e6:d6:c9:0b:ba:d3:df:6f:8d:0b:bf:01: 89:48:74:c5:3b:ab:f2:81:d3:fa:82:c8:eb:5c:ec: ca:b7:9e:bf:7a:75:9d:73:9b:be:e3:fb:f5:74:22: b6:2c:8e:d3:96:c1:53:5e:3e:97:ed:b1:9f:ba:0a: 6f:d4:04:fe:d1:3e:d6:9d:d5:f1:e4:35:05:f9:99: a8:1b:66:37:a2:94:5d:76:a3:85:c4:63:3c:26:50: ef:f2:34:76:09:a5:7e:99:95:41:2a:1c:1b:d1:5f: dc:26:30:08:0f:ac:85:30:b3:6e:8f:43:43:f2:fb: c5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C5:DC:3F:F4:56:5C:AF:25:48:A7:24:DB:69:64:EC:1A:FB:A1:EE X509v3 Authority Key Identifier: keyid:90:6F:CA:8F:70:28:24:E5:21:6D:01:8C:D0:64:BF:6D:D9:8E:86:D7 X509v3 CRL Distribution Points: Full Name: URI:file:////ott1-titan/CertEnroll/OTT1-TITAN-CA.crl Authority Information Access: CA Issuers - URI:file:////ott1-titan/CertEnroll/ott1-titan_OTT1-TITAN-CA.crt Signature Algorithm: sha1WithRSAEncryption 61:84:0d:a6:a0:2b:91:4b:82:52:5f:37:58:de:36:c5:52:38: f6:de:a8:c4:f6:a7:69:1c:1c:ba:32:ac:0e:d7:76:aa:6c:aa: 97:41:4d:27:9a:6e:78:0c:b9:d3:76:c7:eb:09:52:2f:a7:4f: af:1e:6c:25:15:db:86:2d:63:dc:76:dc:34:ba:06:c7:6e:83: 3c:4f:c9:b9:c5:94:9a:4c:be:a9:b5:2b:d2:f3:6c:62:f5:6e: 8c:24:34:48:94:d8:af:b8:59:d0:65:26:7c:39:a1:86:d2:a3: e6:16:2a:1a:dc:d6:01:cd:30:cc:75:cf:b4:a2:43:4a:45:74: d6:3c:88:71:69:55:59:69:8f:88:51:ad:5b:8c:11:6d:78:b4: a5:39:4d:89:02:c5:35:8f:c5:d5:f0:a1:e2:2b:d0:71:be:3c: 29:32:9f:ac:36:b5:2a:27:c7:64:cf:41:7e:db:da:bb:0f:9c: 1d:cd:b4:74:ea:9f:31:11:fa:f8:5e:f8:67:c4:5e:39:2a:48: b7:9d:6d:0f:45:56:9b:b3:83:35:2e:c5:d1:c4:cd:2e:c7:69: 0c:b6:98:4b:09:02:13:7c:06:73:8b:ee:ea:ff:ff:9a:c1:88: d7:4b:ed:f8:71:23:78:ee:76:be:de:e8:6f:b5:27:84:8b:03: 6b:3d:91:53 'sysconf installCert' successful. The NTLS, STC and CBS services must be (re)started before clients can connect. (Successfully installed signed_server.pem as server.pem) Please use the 'ntls show' command to ensure that NTLS is bound to an appropriate network device or IP address/hostname for the network device(s) NTLS should be active on. Use 'ntls bind' to change this binding if necessary. Command Result : 0 (Success)