Procedure 5, Procedure 5 generating a csr – Nortel Networks NN42030-300 User Manual
Page 35
Manage TLS certificates
35
A keystore is a file that can contain trusted certificates and combinations
of private keys with their corresponding certificates. The information within
the keystore is organized by alias, for example:
•
tomcat (required): stores the public/private key pair and the Signed
TLS Certificate from the CA
•
root (required): stores the CA root certificate information
•
intermediate (required for some CAs): stores the CA intermediate
certificate information
Procedure 5
Generating a CSR
Step
Action
1
At the MCG 3100 Server, log on to the server as nortel.
2
To become the superuser, enter the following command:
su
3
To change to the certificate keystore directory, enter:
cd /opt/SQMobilityGW
4
To delete the default keystore, enter:
rm .keystore
5
To generate a certificate keystore and private key, enter:
/usr/java/jdk1.5.0_03/bin/keytool -genkey
-alias tomcat -keyalg RSA -keystore .keystore
6
At the prompt, enter the password for the keystore:
firsthand
The default password for the keystore is firsthand. If you
want to change the default password, you must modify the
.xml configuration file for the MCG 3100 Server. For more
information, see
“Change the keystore default password” (page
.
7
Enter the following information as required by the CA:
•
First and last name—the Common Name of the keystore.
Use the host name (including domain name) of the server as
the common name (cn). For example: mg.mydomain.com
Nortel Mobile Communication 3100 Series Portfolio
Nortel Mobile Communication Gateway 3100 Installation and Upgrades
NN42030-300
02.03
Standard
9 May 2008
Copyright © 2007, 2008 Nortel Networks
.