Date: Fri, 29 Mar 2024 14:11:56 +0000 (UTC) Message-ID: <1388416923.5779.1711721516259@ip-10-0-1-161.ec2.internal> Subject: Exported From Confluence MIME-Version: 1.0 Content-Type: multipart/related; boundary="----=_Part_5778_241646548.1711721516253" ------=_Part_5778_241646548.1711721516253 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Content-Location: file:///C:/exported.html
How to use SSL with the Solaris agent:
Run the command to see the executed script:
inetadm= -l /network/uptimeagent/tcp | fgrep exec
Run the command to update the executed script for the agent:
inetadm= -m /network/uptimeagent/tcp exec=3D"/usr/sbin/stunnel /usr/local/etc/stunn= el/uptimeagent.conf"
where /usr/sbin/stunnel is= the path to the stunnel executable and /usr/local/etc/stunnel/uptimeagent.conf is the path to the upti= meagent.conf built for stunnel to use.
Run the command to see that the e= xecuted script has been changed:
inetadm= -l /network/uptimeagent/tcp | fgrep exec
openssl= req -new -x509 -days 365 -nodes -config stunnel.cnf -out stunnel.pem -keyo= ut stunnel.pem
The following is a sample stunnel.cnf for the openssl program:&nbs= p;
# creat= e RSA certs - Server RANDFILE =3D stunnel.rnd [ req ] default_bits =3D 1024 encrypt_key =3D yes distinguished_name =3D req_dn x509_extensions =3D cert_type [ req_dn ] countryName =3D Country Name (2 letter code) countryName_default &n= bsp; =3D PL countryName_min = =3D 2 countryName_max = =3D 2 stateOrProvinceName &n= bsp; =3D State or Province Name = (full name) stateOrProvinceName_default =3D Some-State localityName &nb= sp; =3D Locality Name (eg, = city) 0.organizationName &nb= sp; =3D Organization = Name (eg, company) 0.organizationName_default =3D Stunnel Develo= pers Ltd organizationalUnitName  = ; =3D Organizational Unit Name (eg, section) #organizationalUnitName_default =3D 0.commonName &nb= sp; &nbs= p; =3D Common Name (FQDN of your server) 0.commonName_default &= nbsp; =3D localhost # To create a certificate for more than one name uncomment: # 1.commonName &= nbsp; =3D DNS alias of your server # 2.commonName &= nbsp; =3D DNS alias of your server # ... # See http://home.netscape.com/eng/security/ssl_2.0_certificate.html # to see how Netscape understands commonName. [ cert_type ] nsCertType =3D server
7. Copy stunnel.pem to <stunnel install directory>= ;/uptimeagent.pem
8. Create the uptimeagent.conf with the= following lines in the stunnel install directory:
cert=3D= /etc/stunnel/uptimeagent.pem exec=3D/opt/uptime-agent/bin/uptimeagent