默认情况下,Cyber​​Ark Vault服务器将使用自签名中国体育彩票开奖。有一个选项可以部署CA签名中国体育彩票开奖,以用于创建到客户端的安全通道。这样,用户可以安全地向第三方认证。

如果您在Vault服务器控制台上看到此消息,则说明您使用的是自签名中国体育彩票开奖:

“ ITATP044W安全警告-保险柜中国体育彩票开奖是自签名的,建议在保险柜的配置中使用CA签名的中国体育彩票开奖”

注意:如果您具有灾难恢复保险库,则还必须对灾难恢复服务器重复以下过程。

为保险柜生成中国体育彩票开奖签名请求

此过程将在保险柜服务器上创建私钥,并创建要由您组织的SSL签名的中国体育彩票开奖签名请求(CSR)。

安装Vault服务器组织SSL中国体育彩票开奖

此过程将已签名的组织SSL中国体育彩票开奖安装在Vault应用程序上。

参考文献

附录


C:\Program Files (x86)\PrivateArk\Server> 中国体育彩票开奖 .exe /?
Usage:  中国体育彩票开奖  <command> [command parameters]
       If no command parameter is specified, you will be prompted for input.
CACert commands:
request         - Prepares certificate signing request (CSR) file
install         - Installs certificate to be used by the vault
uninstall       - Uninstalls the current vault certificate
import          - Imports and installs a certificate from a ".pfx" file
show            - Shows current vault certificate information
renew           - Renews the current vault certificate
setca           - Handles CA certificates store

Option preceeded with '*' is mandatory
"request" command options:
* /ReqOutFile      - 请求输出文件的名称
  /ReqOutPrvFile   - 私钥输出文件 (default is server private key)
  /KeyBitLen       - Bit length of output private key (default is 2048)
  /Country         - Country Name (2 letters code)
  /State           - State or Province Name (full name)
  /Locality        - Locality Name (eg, city)
  /Org             - Organization Name (eg, company)
  /OrgUnit         - Organizational Unit Name (eg, section)
* /CommonName      -  通用名  (eg, DNS name of the vault)
  /SubjAlt         - Subject alternative names (eg, "DNS:www.cyber-ark.com, IP:1
92.168.41.1")
"install" command options:
* /CertFileName    - Full path of the certificate file to install
"uninstall" command options:
  /Quiet           - Uninstalls the vault certificate without user confirmation
"import" command options:
* /InFile          - Full path of the file that contains the key and certificate
 to import (.pfx)
  /Password        - Password of the .pfx file
"show" command options:
  /OutFormat       - Output format: TEXT, PEM OR DER (default is TEXT)
"renew" command options:
* /RenOutFile      - Certificate renewal output file name
"setca" command options:
  /CertStore       - Certificate store to work with. If parameter is ommited, th
e vault trusted client CA's store is selected
  /List            - Lists subjects of certificates in a store
  /Add             - Name of certificate file to add to the store
  /Remove          - Name of certificate file to remove from the store

C:\Program Files (x86)\PrivateArk\Server>

来自Blogger //blog.fabiandinkins.com/2020/07/replace-cyberark-vault-server-self.html

发表评论