To facilitate installation, CCISSF supplies a default certificate to allow “out of the box” operation. However, use of the default certificate cannot ensure any significant level of authentication since all certificates are identical. For true authentication, we strongly recommend you use customized PEM format certificates in accordance with site standards, and replace the default certificate in the location discussed in this topic.
The default certificate has the following properties:
The default certificate’s private key is encrypted with the passphrase ”CACCI”. When CCISSF is installed a default certificate called cert.pem is installed on the system. Unless the default configuration is altered (see ccisslcfg Utility) CCISSF will use this default certificate. This default certificate can be replaced with a user-provided certificate of the same name, or the ccisslcfg utility can be used to configure CCISSF to use a user-provided certificate with a different name.
|
Copyright © 2010 CA.
All rights reserved.
|
|