summaryrefslogtreecommitdiffstats
path: root/readme.html
diff options
context:
space:
mode:
authorkonrad.r <konrad.r>2004-03-09 21:38:27 +0000
committerkonrad.r <konrad.r>2004-03-09 21:38:27 +0000
commite33849719dc2af764e15175a92db729d3a219753 (patch)
treedb8b16bb055ebf2aaee38644041ac9a51e8926fb /readme.html
parenta74ffcda71680e00339cfcb29c3e65037eefe33a (diff)
downloadtog-pegasus-e33849719dc2af764e15175a92db729d3a219753.zip
tog-pegasus-e33849719dc2af764e15175a92db729d3a219753.tar.gz
tog-pegasus-e33849719dc2af764e15175a92db729d3a219753.tar.xz
BUG: 1231
TITLE: Revise the README file to include more in depth explanation of setting up/configuring Pegasus using SSL.
Diffstat (limited to 'readme.html')
-rw-r--r--readme.html37
1 files changed, 34 insertions, 3 deletions
diff --git a/readme.html b/readme.html
index 87b8482..12e7ce0 100644
--- a/readme.html
+++ b/readme.html
@@ -111,6 +111,9 @@ Providers</a><p align="left" style="margin-top: 0; margin-bottom: 0">
<a href="#Creating SSL certifications">Creating SSL certifications</a>.
<p align="left" style="margin-top: 0; margin-bottom: 0">
+<a href="#Configuring SSL">Configuring Pegasus to use SSL</a>.
+
+<p align="left" style="margin-top: 0; margin-bottom: 0">
<a href="#Testing with ICU enabled">Testing with ICU enabled </a>
<p align="left" style="margin-top: 0; margin-bottom: 0">
@@ -842,8 +845,12 @@ bin/cimuser l (lists the users)
bin/tomof CIM_Config (extract CIM_Config from repository and present it in MOF type)
</pre>
</blockquote><h1><a name="Creating SSL certifications">Creating SSL certifications </a></h1><p>
-Type these commands in your shell to create the SSL certifications. The PEGASUS_ROOT and PEGASUS_HOME have to be set to your respective installation and source
-directory. <blockquote><pre>CN=&quot;Common Name&quot;
+Please follow section <a href="#Notes about Building Pegasus with SSL">Notes on building Pegasus with SSL</a> before embarking on this endeavour.
+<br><br>
+Type these commands in your shell to create the SSL certifications. The PEGASUS_ROOT
+and PEGASUS_HOME have to be set to your respective installation and source directory.
+
+<blockquote><pre>CN=&quot;Common Name&quot;
EMAIL=&quot;test@email.address&quot;
HOSTNAME=`uname -n`
sed -e &quot;s/$CN/$HOSTNAME/&quot; \
@@ -860,6 +867,30 @@ chgrp bin $PEGASUS_HOME/ssl.cnf
cat $PEGASUS_HOME/key.pem $PEGASUS_HOME/cert.pem &gt; $PEGASUS_HOME/server.pem
rm $PEGASUS_HOME/key.pem $PEGASUS_HOME/cert.pem
cp $PEGASUS_HOME/cert.pem $PEGASUS_HOME/client.pem
+
+</pre></blockquote>
+<h1><a name="Configuring SSL">Configuring Pegasus to use SSL</a></h1><p>
+
+Please follow section <a href="#Notes about Building Pegasus with SSL">Notes on building Pegasus with SSL</a> and <a href="#Creating SSL certifications">Creating SSL certifications</a>
+before embarking on this endeavour.<br><br>
+
+To configure Pegasus to take advantage of SSL, configure
+cimserver_planned.conf to have:
+<blockquote><pre>
+ sslTrustFilePath=client.pem
+ sslCertificateFilePath=server.pem
+ sslKeyFilePath=file.pem
+ httpsPort=5989
+ enableHttpsConnection=true
+</pre></blockquote>
+(The client.pem and server.pem are the certifications
+files created per the steps in the earlier section).
+
+For good riddance you might consider closing down
+the cleartext 5988 port. Modify your cimserver_planned.conf
+to include:
+<blockquote><pre>
+ enableHttpConnection=false
</pre></blockquote><h1><a name="Testing with ICU enabled">Testing with ICU enabled</a></h1><p>
ICU (International Components for Unicode) refers to the set of libraries that
Pegasus uses to run globalized. For example: these libraries are used to
@@ -905,4 +936,4 @@ the mailing list by visiting www.openpegasus.org, and click on Mailing Lists.
</body>
-</html> \ No newline at end of file
+</html>