Nortel Networks NN42030-300 manual CA root and intermediate certificates

Page 38

38Postinstallation

OR

Upload the CSR.txt file.

4Request a signed TLS certificate.

The CA generates a signed TLS certificate and sends it to the certificate administrator’s e-mail address.

5Save the signed TLS certificate to a location that is accessible from the MCG 3100 Server.

You require the signed TLS certificate to perform “Root and signed certificate installation” (page 39) Step 5.

--End--

CA root and intermediate certificates

You must obtain the CA root or intermediate certificate in two formats:

TXT format for installation on the server

DER format for installation on the mobile devices

To obtain the CA root or intermediate certificate, use the certificate management tool provided by the CA and follow the steps in Procedure 7 “Obtaining a CA root or intermediate certificate” (page 38).

ATTENTION

In some cases the CA provides an intermediate certificate instead of, or in addition to, the root certificate. Read all instructions provided by the CA carefully. Follow the same procedure to download an intermediate certificate, as for the root certificate.

Procedure 7

Obtaining a CA root or intermediate certificate

Step Action

1Using the certificate management tool provided by your CA, locate the root or intermediate certificate in both TXT and DER formats.

2Download the TXT format for the server.

You can skip this step if your server is preconfigured with your CA root certificate.

3Download the DER format for the client devices.

You can skip this step if the client devices are preconfigured with your CA root or intermediate certificate.

Nortel Mobile Communication 3100 Series Portfolio

Nortel Mobile Communication Gateway 3100 Installation and Upgrades

NN42030-300 02.03 Standard

9 May 2008

Copyright © 2007, 2008 Nortel Networks

Page 37 Page 39
Image 38
Page 37 Page 39
Contents NN42030-300 Legal Notice Contents System software maintenance Copyright 2007, 2008 Nortel Networks Copyright 2007, 2008 Nortel Networks Other changes FeaturesNew in this release Revision history How to get help Getting help through a Nortel distributor or reseller Conventions IntroductionSubject Intended audienceText conventions cont’d Related informationTerminology NTPs Introduction MCG 3100 server components FundamentalsOverview Software components Hardware requirements SpecificationHardware components Installation overview Installation optionsOverview of the MC 3100 installation Fundamentals Preinstallation Linux base installationPreinstallation Enterprise network verificationSupported Ldap servers Preinstallation Nonredundant server option InstallationNonredundant and redundant server implementations Redundant server optionRules for redundant server implementations Software installationProcedure Installing the MCG 3100 software Appinstall End MCG 3100 Web Console logon PostinstallationProcedure Logging on to the MCG 3100 Web Console Procedure Configuring the MCG 3100 parameters MCG 3100 parameter configurationMCG 3100 configuration parameter fields Field Description Postinstallation Procedure Adding a license file License fileLicence file troubleshooting ErrorManage TLS certificates Enroll with a Certificate AuthorityCertificate Signing Request generation Procedure Generating a CSR To generate the CSR, enter Firsthand Procedure Obtaining a signed TLS certificateSigned TLS certificate Procedure Obtaining a CA root or intermediate certificate CA root and intermediate certificatesUsr/java/jdk1.5.003/bin/keytool -import Root and signed certificate installationProcedure Installing the root and signed certificates Viewing the contents of the keystore Change the keystore default passwordCd /opt/SQmobilityGW/tomcat/conf Sudo /sbin/service mobilitygw restartCA root certificate distribution Procedure Installing a root certificate on a Nokia device Click File ManagerManage TLS certificates Postinstallation Procedure Upgrading the MCG 3100 system software from CD System software maintenanceSystem software upgrades System software maintenance PM EST Procedure Removing an SU Sudo /opt/mobilitybase-2.1-XX/postpatch.shSystem software uninstallation Sudo /opt/mobilitybase-2.1-XX/postunpatch.shProcedure Uninstalling the MCG 3100 system software Admin shell accessShell commands Sudo /sbin/service mobilityadmin start Sudo /sbin/service mobilitygw startSudo /sbin/service mobilitygw stop Sudo /sbin/service mobilityadmin stopProcedure Checking the Gateway Server processes Root 9498 9367 0 1402 pts/0 000000 grep SQMobilityGWRoot 9542 9367 0 1404 pts/0 000000 grep SQMobilityAdmin Procedure Checking the Administration Server processesProcedure Restoring the databases Mysqldump --opt --all-databases backup.sqlProcedure Backing up the databases To start the server processes, enter System software maintenance Appendix a Port numbers and protocols Port usage page 57 lists the port usage details for MCGTCP JVM Usr/java/jdk1.5.003/bin/keytool -genkey Procedure Generating self-signed certificatesAppendix B Self-signed certificate generation Days. Nortel recommends using a value 3650 Index Copyright 2007, 2008 Nortel Networks Page Nortel Mobile Communication 3100 Series Portfolio
Top Page Image Contents