Deployment and Installation Center
Websense TRITON Enterprise v7.6.x

Library Search:


Go to the table of contents Go to the previous page Go to the next page Go to the index
Creating Apache SSL Certificates

Creating Apache SSL Certificates
Applies to
*
Websense Web Filter 7.6
*
Websense Web Security 7.6
*
Websense Web Security Gateway 7.6
*
Websense Web Security Gateway Anywhere 7.6
In this topic
*
Overview
*
Procedure
*
Using a batch file for Apache SSL certificate file operations
Overview
Complete the following procedure to create (or re-create) Apache SSL certificates for the TRITON - Web Security module of TRITON management server.
* 
Note 
These are basic instructions for creating certificates. Changing the password on certificates is not included in these steps. Avoid changing passwords if possible.
Procedure
Perform these steps on the TRITON management server.
1.
Using the Windows Services console (Start > Control Panel > Administrative Tools > Services), stop the following services:
*
Websense TRITON - Web Security
*
Websense Web Reporting Tools
2.
Edit <Installation folder>\Web Security\apache\conf\ssl\openssl.txt if necessary.
If you have changed the IP address of this machine, edit the IP address in the openssl.txt file to match.
 
* 
Note 
You can create a batch file to automate the tasks in Step 3-Step 8. See Using a batch file for Apache SSL certificate file operations. If you choose to create a batch file, execute it and then skip to Step 8.
3.
In <Installation folder>\Web Security\apache\conf\ssl\automation\ run the following scripts in the following order:
a.
s1_newreq.bat
b.
s2_server_key.bat
c.
s3_server_crt.bat
d.
s4_server_p12.bat
4.
Copy:
<Installation folder>\Web Security\apache\conf\ssl\output\server.key to
<Installation folder>\Web Security\apache\conf\ssl\ssl.key\server.key
5.
Copy:
<Installation folder>\Web Security\apache\conf\ssl\output\server.crt to <Installation folder>\Web Security\apache\conf\ssl\ssl.crt\server.crt
6.
Copy:
<Installation folder>\Web Security\apache\conf\ssl\output\cakey.pem to <Installation folderr>\Web Security\apache\conf\ssl\private\cakey.pem
7.
Copy:
<Installation folder>\Web Security\apache\conf\ssl\output\manager.p12 to <Installation folder>\Web Security\tomcat\conf\keystore\tomcat
\manager.p12
8.
Using the Windows Services console, start the following services:
*
Websense TRITON - Web Security
*
Websense Web Reporting Tools
 
* 
Note 
For more information about Apache SSL go to http://www.apache-ssl.org/#FAQ.
Using a batch file for Apache SSL certificate file operations
When creating Apache SSL certificates, there are several batch files to execute and files to copy. You can automate the process by creating and running a batch file.
The following is an example batch file you can use to create your own:
@echo off
set HOME=<Installation folder>\Web Security
set WORKING_DIR=%HOME%\apache\conf\ssl\automation
call "%WORKING_DIR%\s1_newreq.bat"
call "%WORKING_DIR%\s2_server_key.bat"
call "%WORKING_DIR%\s3_server_crt.bat"
call "%WORKING_DIR%\s4_server_p12.bat"
 
@echo on
copy "%HOME%\apache\conf\ssl\output\server.key" "%HOME%\apache\conf\ssl\ssl.key\server.key"
copy "%HOME%\apache\conf\ssl\output\server.crt" "%HOME%\apache\conf\ssl\ssl.crt\server.cr"
copy "%HOME%\apache\conf\ssl\output\cakey.pem" "%HOME%\apache\conf\ssl\private\cakey.pem"
copy "%HOME%\apache\conf\ssl\output\manager.p12" "%HOME%\tomcat\conf\keystore\tomcat\manager.p12"
 

Quick Links



Go to the table of contents Go to the previous page Go to the next page Go to the index
Creating Apache SSL Certificates
(c) 2011 Websense, Inc. All Rights Reserved.