HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- SSL working within ServiceGuard
Operating System - HP-UX
1834343
Members
2178
Online
110066
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Go to solution
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-20-2006 01:54 AM
01-20-2006 01:54 AM
I am about to setup SSL on my production UNIX servers which are configured in a 2 node clustered environment. I have two questions I was hoping you guys could help me with.
I was wondering if SSL would work within the ServiceGuard environment?
If it works within the ServiceGuard environment, then it will be installed on the shared storage. Once installed, I will contact our CA to request a certificate for Secure FTP. I have heard that we have to provide a hostname of the server. I wanted to know if a certificate would work on the "virtual" failover hostname from ServiceGuard?
Thanks for any and all help
I was wondering if SSL would work within the ServiceGuard environment?
If it works within the ServiceGuard environment, then it will be installed on the shared storage. Once installed, I will contact our CA to request a certificate for Secure FTP. I have heard that we have to provide a hostname of the server. I wanted to know if a certificate would work on the "virtual" failover hostname from ServiceGuard?
Thanks for any and all help
Solved! Go to Solution.
- Tags:
- certificate
1 REPLY 1
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-20-2006 02:56 AM
01-20-2006 02:56 AM
Solution
The SSL certificate is primarily tied to a DNS Name. If you have set up your DNS correctly for the package IP address(es), the SSL certificate will work just fine.
There is actually nothing "virtual" about the ServiceGuard package's IP address: it's just an IP address that happens to move between two or more servers. The fact that it moves makes no difference to the DNS hostnames.
There are no technical reasons that would prevent you from copying the SSL certificate and its private key. Only the agreement between you and the CA may limit you to using the certificate on one server at a time.
Actually, the server usually does not care much about the SSL certificate it uses. Once we equipped a test server with a load balancer that does a kind of NAT. It had SSL certificates from our internal test CA. Because of the load balancer, the server's IP address changed and the load balancer was set up in the server's old IP address.
No change of the certificates was needed, even though the actual server was using completely different address: from the viewpoint of the client, nothing was changed!
There is actually nothing "virtual" about the ServiceGuard package's IP address: it's just an IP address that happens to move between two or more servers. The fact that it moves makes no difference to the DNS hostnames.
There are no technical reasons that would prevent you from copying the SSL certificate and its private key. Only the agreement between you and the CA may limit you to using the certificate on one server at a time.
Actually, the server usually does not care much about the SSL certificate it uses. Once we equipped a test server with a load balancer that does a kind of NAT. It had SSL certificates from our internal test CA. Because of the load balancer, the server's IP address changed and the load balancer was set up in the server's old IP address.
No change of the certificates was needed, even though the actual server was using completely different address: from the viewpoint of the client, nothing was changed!
MK
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP