Server Management - Systems Insight Manager
cancel
Showing results for 
Search instead for 
Did you mean: 

Error Local Certificate HPSMH Linux

ffrancois
Advisor

Error Local Certificate HPSMH Linux

I can't create local server certificate on HpSMH 2.1.10 from web.

Message on web page:
An error occurred while creating the PKCS #10 Certificate Request.

smh.log
ERROR LOG (severity=2) Thu Nov 22 16:45:46 2007
Unable to generate Certificate Request: Could not open key file


Any idees welcome

François
6 REPLIES
Jens Ey
Frequent Advisor

Re: Error Local Certificate HPSMH Linux

Same problem here at one of my 2 linux servers. But my smh.log file is clean.
Nothing to find in the internet or in the manuals.

Jens
Jens Ey
Frequent Advisor

Re: Error Local Certificate HPSMH Linux

Hi,

I found the solution!
The problem are the file access permissions to the certificates in /opt/hp/hpsmh and /etc/opt/hp/sslshare.
Group hpsmh needs permission to read and write the files and to read and seek the folders above.
After changing the permissions it works like a charme on my servers!

Jens
ffrancois
Advisor

Re: Error Local Certificate HPSMH Linux

Hi Jens,



Unfortunately, It doesn't work for me.
Witch user do you connect to smh, root ? and what is the exact rights you set on folders.


Thx
François

Jens Ey
Frequent Advisor

Re: Error Local Certificate HPSMH Linux

Hi,

I set the permissions for /opt/hp/hpsmh to
drwxr-xr-x owner:hpsmh group:hpsmh
and for /etc/opt/hp/sslshare to
drwxrwx--- owner:root group:hpsmh

That should to it. User hpsmh (primary group hpsmh) to have read/write access to all files and folder containing key or key requests.
If that does not work you should also search your machine for other locations containing a folder 'sshshare' or files with the extension '.pem'.

Jens

ffrancois
Advisor

Re: Error Local Certificate HPSMH Linux

Hi,



I tried to change these permissions, but no way, always the same message.
I found a cert.pem in /usr/share/ssl/ and modified permissions like /etc/opt/hp/sslshare, but this don't help.

francois

ffrancois
Advisor

Re: Error Local Certificate HPSMH Linux

trace permission denied with
strace -f -eopen /etc/init.d/hpsmhd start

Changing rights and owner on /etc/opt/hp
drwxr-x--- 4 root hpsmh 4096 Mar 26 11:57 hp

that fix my problem