Network Deployment (Distributed operating systems), v8.0 > Reference > Sets
Retrieve from port
Use this page to retrieve a signer certificate from a remote SSL port. The system connects to the specified remote SSL host and port and receives the signer during the handshake using an SSL configuration. From the console...
Security > SSL certificate and key management. Under Configuration settings, click Manage endpoint security configurations > {Inbound | Outbound} > ssl_configuration. Under Related items, click Key stores and certificates > key store. Under Additional Properties, click Signer certificates. Then click the Retrieve from port button.
To retrieve a signer certificate from a specific port, you enter the host and port, select an SSL configuration from the pull-down list, and enter an alias to identify the signer certificate. Click Retrieve Signer Information and information about the signer certificate is displayed, such as the serial number of the certificate, who the certificate is issued to and by, the certificate finger print, and the expiration information for the certificate. If you want the certificate to be stored in the keystore, click Apply or Save.
Host
Host name to which you connect when attempting to retrieve the signer certificate from the SSL port.
Data type: Text
Port
Specifies the SSL port to which you connect when attempting to retrieve the signer certificate.
In a network deployment environment, specify the correct secure sockets layer (SSL) port number when attempting to retrieve a signer certificate from a remote SSL port.
- Use the port number associated with the port name, WC_adminhost_secure, when retrieving a signer certificate from the dmgr.
- Use the port number associated with the port name, CSIV2_SSL_MUTUALAUTH_LISTENER_ADDRESS, when retrieving a signer certificate from a node.
All certificates must be in place prior to retrieving them from the dmgr or from base servers.
Data type: Text
SSL configuration for outbound connection
Specifies the SSL configuration used to connect to the previously specified SSL port. This configuration is also the SSL configuration that contains the signer after retrieval. This SSL configuration does not need to have the trusted certificate for the SSL port as it is retrieved during validation and presented here.
Data type: Text
Alias
Certificate alias name to reference the signer in the key store, which is specified in the SSL configuration.
Data type: Text
Retrieved signer information
Signer certificate information if it is retrieved from the remote host and port.
Create an SSL configuration
Related
Keystores and certificates collection
Signer certificates collection