![]() Remove the # (hash) comment marker from the lines starting with:ĭefine the following properties: server.properties value Locate the section titled SSL Key/Certificate. Open the file /server/server.properties with a text editor (e.g. If you specified the -k, -keystorepass, or -keystorekeypass arguments: Every time you run this command, ensure that the -keystorekeypass value is always the same. IMPORTANT To generate more than one customized self-signed PaperCut NG/MF key/ certificate, run the customized create-ssl-keystore command individually, each time. To eliminate the “Domain mismatch warning” that is displayed when users access HTTPS sites using a fully-qualified domain name, specify the fully-qualified domain (FQDN). If you don’t specify this value, the current computer name is used. Specify the name of the computer/ server that is being used to create the keystore. Valid attributes: c, o, t, ou, cn, l, st, sn, serialnumber, street, emailaddress, dc, e, uid, surname, givenname, initials, generation, unstructuredaddress, unstructuredname, uniqueidentifier, dn, pseudonym, postaladdress, nameatbirth, countryofcitizenship, countryofresidence, gender, placeofbirth, dateofbirth, postalcode, businesscategory, telephonenumber, name, organizationidentifierĪdd the X.509 Basic Constraints CA extension. If you don’t specify this value, the RDN value is CN=,OU=unknown,O=unknown,L=unknown,ST=unknown,C=unknown is a string that contains attribute type/value pairs in format = separated by a comma ",". Specify the self-signed certificate’s RDN (relative distinguished names). If you don’t specify this value, the keystore key password is default. ![]() Specify the password required to access the PaperCut NG/MF key/ certificate that is being generated into the keystore. If you don’t specify this value, the keystore password is default. Specify the password required to access the keystore. For more information, see Can I use other algorithms such as SHA2/SHA256? This ensures backwards compatibility with 3rd party systems. If you don’t specify this value, the standard algorithm sha1 is used. Specify the certificate signing algorithm that is used by the PaperCut NG/MF key/ certificate that is being generated into the keystore. -security-port - The port specified here maps to the -keystoreentry argument's value.- The port specified here maps to the -keystoreentry argument's value.To change the ports, use the following properties in the server.properties file: If you don’t specify this value, the default location /server/data/default-ssl-keystore is used. Specify the location of keystore for the PaperCut NG/MF key/ certificate that is being generated. ![]() (force) Overwrites any existing keystore file(s). NOTE While the table below outlines some arguments of the create-ssl-keystore command, the -help command line option lists all the available arguments. Run the following create-ssl-keystore command after specifying values for relevant arguments: create-ssl-keystore -f -k -keystoreentry -sig -keystorepass -keystorekeypass -bcCA In a command line, navigate to the create-ssl-keystore tool: cd /server/bin/win ![]() To generate customized self-signed certificates: For more information about devices that support this, contact your Reseller or Authorized Solution Center. However, this is currently supported only on some devices. IMPORTANT In addition to supporting self-signed SSL/ HTTPS SHA2 certificates on port 9192, PaperCut NG/MF 18.3.0 or above now also supports self-signed SSL/ HTTPS SHA2 certificates on port 9195. You also have the option of changing these attributes and generating customized self-signed certificates. PRODUCTS FEATURED Use the PaperCut NG/MF self-signed certificateĭuring the install process, PaperCut NG/MF generates self-signed keys/ certificates with default attributes. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |