Step 1 Get a Root CA Certificate from your PKI

When deploying an authentication process with LogLogic® Universal Collector, you must use a PKI consisting of a certificate authority or CA (and a registration authority or RA) that issues and verifies digital certificates. A certificate includes the public key; one or more directories where the certificates (with their public keys) are held and a certificate management system.

A number of products that enable a company to implement a PKI exist.

Procedure

Access a tool such as OpenSSL.
Generate a public and a private key. The recommended and maximum size is 2048 bit and encrypted in AES 128 (3DES is also supported).

Example: openssl genrsa -out ca.key -aes128 2048
Generate the CA (valid for 7305 days)
Example: openssl req -new -x509 -days 7305 -key ca.key -out ca.pem

What to do next

Refer to the SSL Certificates HOWTO documentation to know how to create your Certificate Authority:

http://www.gtlib.gatech.edu/pub/linux/docs/HOWTO/other-formats/html_single/SSL-Certificates-HOWTO.html

Contents

Index

Search Results

Step 1 Get a Root CA Certificate from your PKI

Procedure

What to do next