Files

Keane Lim 3c5fa979a4 Security guide update

Re-organized topic hierarchy

Tiny edit to restart review workflow.

Squashed with Resolved index.rst conflict commit

Change-Id: I13472792cb19d1e9975ac76c6954d38054d606c5
Signed-off-by: Keane Lim <keane.lim@windriver.com>
Signed-off-by: MCamp859 <maryx.camp@intel.com>

2021-03-12 15:10:40 -05:00

1.4 KiB

Raw Blame History

Install/Update the StarlingX Rest and Web Server Certificate

Use the following procedure to install or update the certificate for the REST API application endpoints (Keystone, Barbican and StarlingX) and the web administration server.

Obtain a Root -signed certificate and key from a trusted Root . Refer to the documentation for the external Root that you are using, on how to create public certificate and private key pairs, signed by a Root , for HTTPS.

For lab purposes, see Locally Creating Certificates <creating-certificates-locally-using-openssl> for how to create a test Root certificate and key, and use it to sign test certificates.

Put the encoded versions of the certificate and key in a single file, and copy the file to the controller host.

Install/update the copied certificate.

For example:
```
~(keystone_admin)$ system certificate-install <pathTocertificateAndKey>
```
where:

<pathTocertificateAndKey>

is the path to the file containing both the Root -signed certificate and private key to install.

1.4 KiB Raw Blame History

Install/Update the StarlingX Rest and Web Server Certificate

1.4 KiB

Raw Blame History