jpcwtool https create provcert
- Organization of this page
Format
jpcwtool https create provcert -d output-directory [-bits {2048|4096}] [-sign {SHA256|SHA384|SHA512}] [-validity number-of-days] [-noquery]
Function
The command jpcwtool https create provcert creates a self-signed certificate file and private key file to use for testing purposes. It differs from the command jpcwtool https create certreq in that it does not allow a password to be set for the private key.
You can use the files created by this command for purposes of testing encrypted communication between the Web browser and the monitoring console server. For details about how to configure these settings, see the description about changing the settings for encrypted communication between a Web browser and the monitoring console server in the JP1/Performance Management Planning and Configuration Guide.
Hosts that can execute the command
PFM - Web Console
Execution permission
- In Windows:
-
User with Administrators permissions
- In UNIX:
-
User with root user permissions
Installation directory
- In Windows:
-
installation-folder\tools\
- In UNIX:
-
/opt/jp1pcwebcon/tools/
Arguments
-d output-directory
Specify the directory to which the self-signed certificate file and private key file are to be output in output-directory. The maximum length is 237 bytes. The directory is specified in the same manner as for the command jpcwtool https create certreq. For details, see Specifying files and directories.
The names of the files that will be output are as follows:
-
Self-signed certificate file: jpcwhttpscert.pem
-
Private key file: jpcwhttpskey.pem
-bits {2048|4096}
Specifies the bit length of the private key to be created.
If this option is omitted, 2048 is assumed.
-sign {SHA256|SHA384|SHA512}
Specifies the signature algorithm when creating the certificate signing request file.
The algorithms corresponding to each input value are as follows:
-
SHA256: sha256WithRSAEncryption
-
SHA384: sha384WithRSAEncryption
-
SHA512: sha512WithRSAEncryption
If this option is omitted, SHA256 is assumed.
-validity number-of-days
Specifies the validity period in days of the self-signed certificate. Specify a value from 1 to 3,650.
If this option is omitted, 365 (days) is assumed.
-noquery
If this option is specified, query messages that interrupt execution of the command are not output, and no response from the user is required. Specify this option if you want to execute the command non-interactively.
If an output destination file specified with the -d option already exists, it will be overwritten.
If this option is omitted, a message is displayed to confirm whether to overwrite the file.
Information to be entered during execution of the command
During execution of command, the user is prompted for the same information, except for the email addresss, that is entered in the command jpcwtool https create certreq for setting the fields in the certificate signing request file. For details, see Information to be entered during execution of the command.
Notes
-
The files created by this command are usable only on the PFM - Web Console. The files might not be usable on the Web browser, depending on the Web browser that is used.
-
If an error occurs during command execution, files might get left behind in the output destination specified in the -d option.
-
This command cannot be executed concurrently with the command jpcwtool https on the same host.
Return values
0 |
The command terminated normally. |
1 |
An argument specification is invalid. |
2 |
The user does not have execution permission for the command. |
3 |
A file or directory cannot be accessed. |
4 |
None of the items to be set in the self-signed certificate file were set. |
5 |
The maximum number of characters for the input field was exceeded. |
6 |
An attempt to output a file failed. |
80 |
Overwiting was rejected by the user. |
100 |
The PFM - Web Console environment is invalid. |
200 |
A memory shortage occurred. |
203 |
An error occurred during output of the file. |
210 |
A disk space shortage occurred. |
255 |
An unexpected error occurred. |
Usage example
This example outputs the files to the directory /tmp/dir.
> ./jpcwtool https create provcert -d /tmp/dir Country Name (2 letter code) :JP State or Province Name (full name) :Kanagawa Locality Name (eg, city) :Yokohama-shi Organization Name (eg, company) :HITACHI Organizational Unit Name (eg, section) :WebSite Common Name (eg, YOUR name) :pfm.hitachi.co.jp Subject: C=JP,ST=Kanagawa,L=Yokohama-shi,O=HITACHI,OU=WebSite,CN=pfm.hitachi.co.jp KAVJT6552-I Output of the self-signed certificate and private key ended normally.