Apple Mac OS X Server Version 10.4 or Later Manual do Utilizador descarregar pdf (Página 98)

98 Appendix Certificates and Security

Importing a Certificate

You can import a previously generated OpenSSL certificate and private key into

Certificate Manager. The items are stored as available in the list of identities, and

available to SSL-enabled services.

To import an existing OpenSSL style certificate:

1 In Server Admin, select the server which has services that support SSL.

2 Click Settings.

3 Select the Certificates tab.

4 Click the Import button.

5 Enter the existing certificate’s file name and path.

Alternately, browse for it’s location.

6 Enter the existing private key file’s name and path.

Alternately, browse for it’s location.

7 Enter the private key passphrase.

8 Click Import.

Managing Certificates

Once created and signed, you shouldn’t have to do much more with the certificates.

They are only editable in Server Admin, and cannot be changed once a CA signs the

certificate. Self-signed certificates can be changed. Certificates should be deleted if the

information they possess (contact information, etc.) is no longer accurate, or you

believe the keypair has been comprimised in some way.

Editing a Certificate

Once the certificate signature of a CA is added, it can’t be edited.

A self-signed certificate can be edited. All the fields of the certificate (including domain

name and private key passphrase, private key size, etc.) can be modified. If the identity

was exported to disk from the system keychain, it will have to be re-exported.

To edit a certificate:

1 In Server Admin, select the server which has services that support SSL.

2 Click Settings.

3 Select the Certificates tab.

4 Select the Certificate Identity to edit.

It must be a self-signed certificate.

5 Click the Edit (/) button.

6 Click Save.

1 2 ... 93 94 95 96 97 98 99 100 101 102 103 ... 112 113

Sem comentários

Apple Mac OS X Server Version 10.4 or Later Manual do Utilizador Página 98