Difference between revisions of "HowTo Regenerate The TLS (SSL) Certificate For The NST WUI"
(→nstcert) |
(→Generate a new TLS Certificate for the NST WUI) |
||
Line 7: | Line 7: | ||
= Generate a new TLS Certificate for the NST WUI = | = Generate a new TLS Certificate for the NST WUI = | ||
− | If one needs to generate a new self-signing | + | If one needs to generate a new self-signing TLS certificate for NST WUI usage, the following help script: "'''/usr/libexec/nstwui-ssl-gencerts'''" may be utilized. It uses the '''nstcert''' script described above in combination with the configuration file: "'''/etc/nst/wui/nstcert.conf'''". Edit this file to suit your needs. |
sudo /usr/libexec/nstwui-ssl-gencerts -r | sudo /usr/libexec/nstwui-ssl-gencerts -r | ||
− | The "'''-r'''" option is necessary to remove the previous | + | The "'''-r'''" option is necessary to remove the previous TLS certificate. |
= Stricter Trusted Certificate Security Requirements = | = Stricter Trusted Certificate Security Requirements = |
Revision as of 07:03, 22 November 2019
Contents
Overview
This page demonstrates how to regenerate the TLS (Deprecated predecessor: SSL) self-signing certificate for the NST WUI.
nstcert
The process of generating an TLS key and certificate files and then making use of them in a Apache® configuration file can be a time consuming process. The "nstcert" script attempts to automate part of the process by generating template files for use within the Apache® httpd daemon. The script also generates a PEM (Privacy-enhanced Electronic Mail) file.
Generate a new TLS Certificate for the NST WUI
If one needs to generate a new self-signing TLS certificate for NST WUI usage, the following help script: "/usr/libexec/nstwui-ssl-gencerts" may be utilized. It uses the nstcert script described above in combination with the configuration file: "/etc/nst/wui/nstcert.conf". Edit this file to suit your needs.
sudo /usr/libexec/nstwui-ssl-gencerts -r
The "-r" option is necessary to remove the previous TLS certificate.