Self-signed certificate can be used to create trust for the CommServe. You can use OpenSSL to create a key and a self-signed certificate on any machine, and then copy these files to the CommServe machine.
Procedure
-
To create a 2048-bit RSA key, execute the following command:
openssl genrsa –out client_private.pem 2048 -
To create a self-signed certificate using the key created above, execute the following command:
openssl req -new -x509 -key client_private.pem -out client.pem -days 365 -
Follow the prompts. When prompted for the Common Name, enter the host name that you specified when adding CommServe to the DSM. This name must be a perfect match.
Two files client_private.pem and client.pem are generated. The client_private.pem file contains the key and the client.pem file contains the certificate.
-
Copy the client_private.pem and client.pem files to the CommServe machine.