vCloud Director 5.1 Installation Step 3 – Creating self-signed certificate

Why do we need 2 certificates? The answer is because we have 2 NIC cards and each certificate belongs to one of them.

Before running the commands, please change the passwords below

keytool -keystore certificates.ks -storetype JCEKS -storepass passwd -genkey -keyalg RSA -alias http

keytool -keystore certificates.ks -storetype JCEKS -storepass passwd -genkey -keyalg RSA -alias consoleproxy

to verify the certificates;

keytool -storetype JCEKS -storepass passwd -keystore certificates.ks –list

what are the meaning of these commands

Keytool is the tool we make or read the certificate

Keystore that is the file contains keys

Storetype is java based file format

Storepass is the password of the certificate

Validity is that how long the certificate will valid

Genkey is to generate the key

Keyalg is the algorithm

Alias is the name of certificate such as Http

Let’s continue

connect to Red hat server

type root’s password

and now we can start creating certificate. before doing it, I would like to create a folder to keep all this kind of things.

cd /

mkdir preptools

cd preptools

keytool -keystore certificates.ks -storetype JCEKS -storepass passwd -genkey -keyalg RSA -alias http

image

keytool -keystore certificates.ks -storetype JCEKS -storepass passwd -genkey -keyalg RSA -alias consoleproxy

image

it is time to validate my certificates

keytool -storetype JCEKS -storepass passwd -keystore certificates.ks –list

image

now we have validated that our certificates are good and then we can check and change the permission on certificate files

type ls –la. As you can see that certificate files has only read access. that means we can’t execute them.

image

All we have to do it is to change the permission.

that’s the command – chmod 555 certificates.ks

image

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Blog at WordPress.com.

Up ↑

%d bloggers like this: