- Community Home
- >
- Servers and Operating Systems
- >
- HPE ProLiant
- >
- Server Management - Systems Insight Manager
- >
- Re: Sign SIM certificate with internal CA
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-12-2010 10:36 AM
тАО11-12-2010 10:36 AM
Sign SIM certificate with internal CA
Thanks
Nelson
- Tags:
- certificate
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-12-2010 10:40 AM
тАО11-12-2010 10:40 AM
Re: Sign SIM certificate with internal CA
NElson
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-14-2010 09:04 PM
тАО11-14-2010 09:04 PM
Re: Sign SIM certificate with internal CA
Please find the User Guide @ http://h10018.www1.hp.com/wwsolutions/misc/hpsim-helpfiles/hpsim_userguide_51.pdf
that has the documentation on how to perform the steps.
Go to page no. 152 and you can get the details on Certificate related setings.
Please get back in case of any issue or confusion.
Thanks,
Arunav
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-15-2010 03:44 PM
тАО11-15-2010 03:44 PM
Re: Sign SIM certificate with internal CA
Here is the problem I run into:
1) Verify the root CA cert is on the SIM server in the "Computer Account" folder called "Trusted Root Authority Certificates/Certificates" - it is indeed there, as it is on every server we build
2)Create a new certifcate with my company settings and this replaces the existing one installed by HP SIM
3) From the "Import Certificate" page, I "Create a Certificate Signing Request" and it creats a "certreq.p10" file
4) I go to the https://mycaservername//certsrv/certrqxt.asp page and paste in the text from the "certreq.p10" file and select the template we have created for this - this is the same template I use for iLOs (which work fine for us). I download the file a "Base 64 encoded" CRT file.
5) From the "Import Certificate" page I "Import signed certificate reply from CA" and point it to the "CRT" file created in step 4 above.
6) When I click the "Import" button as part of step 5 above I get this error:
"Error importing signed certificate: failed to establish chain of trust from reply; first import CA certificate into Trusted System Certificates list." - as I mentioned in step one, I have already done this.
So somewhere, must likely in my CA template I am using - the same template I successfully use for iLO 2 and iLO 3 devices, I am doing something wrong.
So, does anyone have a documented process (i.e. what do I do on the CA server) to make this work for a Windows 2008 CA.
Thanks
Nelson
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-16-2011 01:49 AM
тАО06-16-2011 01:49 AM
Re: Sign SIM certificate with internal CA
Cheers!
Robb.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-16-2011 05:50 AM
тАО06-16-2011 05:50 AM
Re: Sign SIM certificate with internal CA
Nelson
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-28-2011 08:55 PM
тАО06-28-2011 08:55 PM
Re: Sign SIM certificate with internal CA
I have managed to get this working with a W2K8 AD CA.
Before importing the SIM signed certificate, the SIM server needs to be able to establish a chain back to the Root CA. You do this by:
1. Go Options / Security / Credentials / Trusted Systems.
2. Select the tab "Trusted Certificates"
3. Import the cert (or certs) of your CA.
4. Now go back to the HP SIM Server Certificate section and import the signed certificate.
Hope this helps...
Dennis.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-26-2013 02:08 AM
тАО11-26-2013 02:08 AM
Re: Sign SIM certificate with internal CA
Once we downloaded and imported the certificate chain it worked fine.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО02-18-2014 10:46 AM
тАО02-18-2014 10:46 AM
Re: Sign SIM certificate with internal CA
Hello I'm using HP SIM 7.3 with the exact same issue. I have imported the whole chain into the 'Trusted Certificates' tab. I can see all my certs CA listed in the page.
From the HP Sim Server certificate section, I'm doing import of the signed certificate and get this error :
Error importing signed certificate: failed to establish chain of trust from reply; first import CA certificate into Trusted System Certificates list.
Any help is appreciate.
Stephane
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-19-2014 02:32 AM
тАО05-19-2014 02:32 AM
Re: Sign SIM certificate with internal CA
HI HP...feedback from the above post pls?