Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Query: How to install commercial cert into AIX and use it for FTPS connection
Top Forums UNIX for Dummies Questions & Answers Query: How to install commercial cert into AIX and use it for FTPS connection Post 302617667 by mkmuraly on Tuesday 3rd of April 2012 03:46:12 AM
Old 04-03-2012
Hi Frank,

Thanks for the hint, infact I have visited this site before when I was searching for the solution to my problem. We have followed the all the steps mentioned in that thread. The only difference was, instead of generating a Self Sign Cert using the CSR (created at step 7) we pass the CSR to a CA to generate the Digital Cert. Meaning we skip the step 8 and continue from Step 9, after getting the CA signed cert (meaning to say, we issued the following cmd "cat server_key.pem server_cert.pem rootCA/root_cert.pem > server.pem" using the CA Cert "server_cert.pem")

May I know if the steps we have followed is correct? Pls advice

Thanks
Last edited by mkmuraly; 04-03-2012 at 06:00 AM..
This User Gave Thanks to mkmuraly For This Post:
manojbiswakarma
 

9 More Discussions You Might Find Interesting

1. AIX

FTPS - FTP CLIENT- AIX - HELP Please

I'm currently investigating the secure ftp connection from AIX using shell script - It looks openssl is already install and don't know command to be used to connect the secure ftp server. 1. Do I need to install certificate on AIX ?. 2. If any one already design the script to connect secure... (0 Replies)
Discussion started by: dharanir
0 Replies

2. AIX

aix cert 223 need help.

Hi, a friend of mine passed there 223 last year and they gave me there testkiller document which was 65 questions, i am looking at doing my 223 exam and i have gone to testkiller recently and noticed there is an updated version which is now 383 questions. I did the ibm pre-exam and all the... (1 Reply)
Discussion started by: rorted
1 Replies

3. UNIX for Dummies Questions & Answers

Query :: Using Netstat finding total value to a db connection

I wrote a very simple script to calculate the DB connection from an appserver and check the total netstat connection to a particular DB exceed 25 then it will send mail netstat -a 2> /dev/null | awk '/.*ESTAB/{print $5}' | cut -d. -f1 | uniq -c | awk '{if ($1 > 25)print $2," exceed ",$1;}' ... (1 Reply)
Discussion started by: senthil.ak
1 Replies

4. AIX

AIX custom package install query

I have created a .bff package for an app to tbe installed on AIX servers across regions. I am pretty new to the AIX mode of packaging using mkinstallp but I have been able to get the same done. I installed the same on the server in which i created the package and the application was deployed... (9 Replies)
Discussion started by: jobbyjoseph
9 Replies

5. Shell Programming and Scripting

DB connection and query

Hi I'm trying to create a connection with DB from shell script using the following string sqlplus <user>@<db_instance>/<password> in which I'm successful. However, after connecting to DB it is giving me a sql prompt as follows ===================== Connected to: Oracle Database 10g... (2 Replies)
Discussion started by: sainisumit1
2 Replies

6. Emergency UNIX and Linux Support

AIX 6.1 Self-Signed Cert Creation Issue

Hi, I'm trying to get a self-signed cert created on AIX 6.1, and it's not cooperating. I run the following command: gsk7cmd -cert -create -db /bin/A_CACertsOnly.kdb -pw blahblah -label testing -dn cn=machinename -expire 1000 -ca true...and get this response: The function is not supported for... (3 Replies)
Discussion started by: tekster2
3 Replies

7. UNIX for Dummies Questions & Answers

Ftps connection by ksh script

Hi, I'm trying to access to FTP SERVER over SSL with this script unix : (credentials are correct) #!/usr/bin/ksh USER="test" PASSWORD="pwdtest" IP="**.***.*.***" ftp -s $IP 990 << EOF >>log_ftp user $USER $PASSWORD bin passive EOF but seems that credentials are not passed... (2 Replies)
Discussion started by: nash83
2 Replies

8. Shell Programming and Scripting

FTPS Connection script

I have a requirement for which I had to connect to a server using FTPS. I have been provided with these, connection method: FTPS Server Name Port for explicit and implicit Login user I would like to know the FTPS command/script in order to connect to there server and get a file. ... (5 Replies)
Discussion started by: r@v!7*7@
5 Replies

9. UNIX for Advanced & Expert Users

Best way to transfer files to remote FTPS server instead of local FTPS server

Hi, I am working on an application which runs on an Informatica Red-Hat 5.10 Linux Server. The application involves several Informatica ETL workflows which generate 100s of Text files with lot of data. Many of the files will each be up to 5 GB in size. Currently the Informatica server itself... (7 Replies)
Discussion started by: waavman
7 Replies

LEARN ABOUT DEBIAN

globus_gsi_cred_operations

Credential Operations(3)				       globus gsi credential					  Credential Operations(3)

NAME

       Credential Operations -

   Read Credential
       globus_result_t globus_gsi_cred_read (globus_gsi_cred_handle_t handle, X509_NAME *desired_subject)

   Reading Proxy Credentials
       globus_result_t globus_gsi_cred_read_proxy (globus_gsi_cred_handle_t handle, const char *proxy_filename)
       globus_result_t globus_gsi_cred_read_proxy_bio (globus_gsi_cred_handle_t handle, BIO *bio)

   Read Key
       globus_result_t globus_gsi_cred_read_key (globus_gsi_cred_handle_t handle, char *key_filename, int(*pw_cb)())

   Read Cert and chain from file
       globus_result_t globus_gsi_cred_read_cert (globus_gsi_cred_handle_t handle, char *cert_filename)

   Read Cert and chain from BIO stream
       globus_result_t globus_gsi_cred_read_cert_bio (globus_gsi_cred_handle_t handle, BIO *bio)

   Read Cert & Key in PKCS12 Format
       globus_result_t globus_gsi_cred_read_pkcs12 (globus_gsi_cred_handle_t handle, char *pkcs12_filename)

   Write Credential
       globus_result_t globus_gsi_cred_write (globus_gsi_cred_handle_t handle, BIO *bio)
       globus_result_t globus_gsi_cred_write_proxy (globus_gsi_cred_handle_t handle, char *proxy_filename)

   Get the X509 certificate type (EEC, CA, proxy type, etc.)
       globus_result_t globus_gsi_cred_get_cert_type (globus_gsi_cred_handle_t handle, globus_gsi_cert_utils_cert_type_t *type)

Detailed Description
       Read/Write a GSI Credential Handle.

       This section defines operations to read and write GSI Credential handles.

Function Documentation
   globus_result_t globus_gsi_cred_read (globus_gsi_cred_handle_thandle, X509_NAME *desired_subject)
       Read a Credential from a filesystem location. The credential to read will be determined by the search order specified in the handle
       attributes.

       Parameters:
	   handle The credential handle to set. This credential handle should already be initialized using globus_gsi_cred_handle_init.
	   desired_subject The subject to check for when reading in a credential. The desired_subject should be either a exact match of the read
	   cert's subject or should just contain the /CN entry. If null, the credential read in is the first match based on the system
	   configuration (paths and environment variables)

       Returns:
	   GLOBUS_SUCCESS if no errors occured, otherwise, an error object identifier is returned.

       See also:
	   globus_gsi_cred_read_proxy()

	   globus_gsi_cred_read_cert_and_key()

       Note:
	   This function always searches for the desired credential. If you don't want to perform a search, then don't use this function. The
	   search goes in the order of the handle attributes' search order.

   globus_result_t globus_gsi_cred_read_proxy (globus_gsi_cred_handle_thandle, const char *proxy_filename)
       Read a proxy from a PEM file. Parameters:
	   handle The credential handle to set based on the proxy credential read from the file
	   proxy_filename The file containing the proxy credential

       Returns:
	   GLOBUS_SUCCESS or an error object identifier

   globus_result_t globus_gsi_cred_read_proxy_bio (globus_gsi_cred_handle_thandle, BIO *bio)
       Read a Proxy Credential from a BIO stream and set the credential handle to represent the read credential. The values read from the stream,
       in order, will be the signed certificate, the private key, and the certificate chain

       Parameters:
	   handle The credential handle to set. The credential should handle be initialized (i.e. not NULL).
	   bio The stream to read the credential from

       Returns:
	   GLOBUS_SUCCESS unless an error occurred, in which case an error object is returned

   globus_result_t globus_gsi_cred_read_key (globus_gsi_cred_handle_thandle, char *key_filename, int(*)()pw_cb)
       Read a key from a PEM file. Parameters:
	   handle the handle to set based on the key that is read
	   key_filename the filename of the key to read
	   pw_cb the callback for obtaining a password for decrypting the key.

       Returns:
	   GLOBUS_SUCCESS or an error object identifier

   globus_result_t globus_gsi_cred_read_cert (globus_gsi_cred_handle_thandle, char *cert_filename)
       Read a cert from a file. Cert should be in PEM format. Will also read additional certificates as chain if present.

       Parameters:
	   handle the handle to set based on the certificate that is read
	   cert_filename the filename of the certificate to read

       Returns:
	   GLOBUS_SUCCESS or an error object identifier

   globus_result_t globus_gsi_cred_read_cert_bio (globus_gsi_cred_handle_thandle, BIO *bio)
       Read a cert from a BIO. Cert should be in PEM format. Will also read additional certificates as chain if present.

       Parameters:
	   handle the handle to set based on the certificate that is read
	   bio the bio to read the certificate from

       Returns:
	   GLOBUS_SUCCESS or an error object identifier

   globus_result_t globus_gsi_cred_read_pkcs12 (globus_gsi_cred_handle_thandle, char *pkcs12_filename)
       Read a cert & key from a file. The file should be in PKCS12 format.

       Parameters:
	   handle the handle to populate with the read credential
	   pkcs12_filename the filename containing the credential to read

       Returns:
	   GLOBUS_SUCCESS or an error object identifier

   globus_result_t globus_gsi_cred_write (globus_gsi_cred_handle_thandle, BIO *bio)
       Write out a credential to a BIO. The credential parameters written, in order, are the signed certificate, the RSA private key, and the
       certificate chain (a set of X509 certificates). the credential is written out in PEM format.

       Parameters:
	   handle The credential to write out
	   bio The BIO stream to write out to

       Returns:
	   GLOBUS_SUCCESS unless an error occurred, in which case an error object ID is returned.

   globus_result_t globus_gsi_cred_write_proxy (globus_gsi_cred_handle_thandle, char *proxy_filename)
       Write out a credential to a file. The credential parameters written, in order, are the signed certificate, the RSA private key, and the
       certificate chain (a set of X509 certificates). the credential is written out in PEM format.

       Parameters:
	   handle The credential to write out
	   proxy_filename The file to write out to

       Returns:
	   GLOBUS_SUCCESS unless an error occurred, in which case an error object ID is returned.

   globus_result_t globus_gsi_cred_get_cert_type (globus_gsi_cred_handle_thandle, globus_gsi_cert_utils_cert_type_t *type)
       Determine the type of the given X509 certificate For the list of possible values returned, see globus_gsi_cert_utils_cert_type_t.
       Parameters:
	   handle The credential handle containing the certificate
	   type The returned X509 certificate type

       Returns:
	   GLOBUS_SUCCESS or an error captured in a globus_result_t

Author
       Generated automatically by Doxygen for globus gsi credential from the source code.

Version 5.3							  Mon Apr 30 2012					  Credential Operations(3)
All times are GMT -4. The time now is 01:50 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy