在HP SMH (System Management Homepage)上,我想将默认PEM替换为内部CA颁发的证书。
我有三个证书,一个是私钥,另一个是证书 另一个是CA证书。它适用于openldap和stunnel等应用程序。 对于hpsmh,我首先尝试转换为pcks7
openssl crl2pkcs7 -outform PEM -nocrl -certfile /etc/ssl/certs/hpux.crt -out cert.pem
openssl crl2pkcs7 -outform PEM -nocrl -certfile /etc/ssl/certs/hpux.key -out file.pem
然后我复制到/opt/hpsmh/sslshare/cert.pem和/opt/hpsmh/sslshare/file.pem。但是在重新启动SMH时会出现此错误:
The server certificate did not match the private key and has been regenerated.
The problematic certificate was renamed certmm.pem and is in the "..\hp\sslshare" subdirectory.
有什么建议吗?感谢
答案 0 :(得分:0)
我自己找到了解决方案,惠普接受x509证书 所以我做了
cp /etc/ssl/private/hpux.key /opt/hpsmh/sslshare/file.pem
cp /etc/ssl/certs/hpux.crt /opt/hpsmh/sslshare/file.pem
重启hpsmh,工作正常