• Created by Unknown User (anastasia.antonenko), last modified on Dec 11, 2023

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Current »

Preparation

Windows

  1. Create a management server certificate in PFX format with a private key (you need to issue a domain CA certificate) with the following attributes:
    1. Subject: Common name - <DNS name of the management server>
    2. Subject Alternative name:
      1. DNS - <DNS name of the management server>
      2. DNS - <DNS domain name>

  2. Certificate Authority certificate in CRT formatĀ  (Base64)

Linux

  1. Create certificates for each server on which you plan to install Indeed Identity PAM components (you need to issue a domain CA certificate) with the following attributes:
    1. Subject: Common name - <DNS name of the component server>
    2. Subject Alternative name:
      1. DNS - <DNS name of the component server>

      2. DNS - <DNS domain name>

        Certificate attributes must be specified in lowercase.

  2. Certificate Authority certificate in CRT formatĀ  (Base64)

Certificates Export

Windows

On the management server, add the management server certificate to the personal certificates.

Add the CA certificate to the trusted root certificates on all servers where Indeed Identity PAM components will be installed.

Linux

Export Indeed Identity PAM component server certificates in PFX format with the same private key for all certificates.

Export the certificate of the certification authority in CRT (Base64) format.

  • No labels