Storwize V7000 ssh cert renewal

Hi

How do I renew the SSH cert ?

Comments

  • Hello,

    this is not SSH certificate, it's the certificate used by Apache web server in virtual appliance,
    you have to login to your appliance via SSH and follow these steps (as root user):
    # this will generate certificate valid for 1 year, consider to use -days 3650
    # fill required fields if you want (country, city, company name etc.)
    openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/pki/tls/private/xorux.key -out /etc/pki/tls/certs/xorux.crt
    
    Then you have to edit file /etc/httpd/conf.d/ssl.conf so that apache uses new certificates:
    vim /etc/httpd/conf.d/ssl.conf
    find these lines:
    SSLCertificateFile /etc/pki/certs/......
    SSLCertificateKeyFile /etc/pki/tls/private/....
    
    and change them to:
    SSLCertificateFile /etc/pki/tls/certs/xorux.crt
    SSLCertificateKeyFile /etc/pki/tls/private/xorux.key
    Save the file and restart Apache:
    systemctl restart httpd.service

    Refresh your browser and add exception for this new certificate, it's self signed.
Sign In or Register to comment.