4.10.1 Files required for HTTPS communication and where to place them
- Organization of this subsection
(1) Files required for HTTPS communication
The files required by Navigation Platform for HTTPS communication are outlined below.
No. |
File |
Prerequisites |
---|---|---|
1 |
Private server key |
|
2 |
Password file (file used to decrypt the private server key) |
Must be generated with the sslpasswd.bat command provided with Navigation Platform. |
3 |
Server certificate |
The following conditions must be met: 1. X.509 PEM format 2. The CA signature algorithm and key length combination must be either of the following:
|
4 |
CA certificate (file required when the server certificate is issued by the CA)#3 |
X.509 PEM format |
(2) Placement of files required for HTTPS communication
Files required for HTTPS communication must be placed before running the npsetup command (setup).
Place the file corresponding to the encryption method specified for the ucnp.setup.server.cosminexus.hws.http.ssl.privatekey.type property in the user setup property file (ucnp_setup_user.properties).
Details on the encryption method and corresponding file destination are provided below.
No. |
Private server key encryption method |
File type |
File name# |
File destination path |
---|---|---|---|---|
1 |
RSA |
Private server key |
httpsdkey.pem |
%UCNP_HOME%\PP\uCPSB\httpsd\conf\ssl\server |
2 |
assword file |
.keypasswd |
%UCNP_HOME%\PP\uCPSB\httpsd\conf\ssl\server |
|
3 |
Server certificate |
httpsd.pem |
%UCNP_HOME%\PP\uCPSB\httpsd\conf\ssl\server |
|
4 |
ECC |
Private server key |
httpsdkey-ecc.pem |
%UCNP_HOME%\PP\uCPSB\httpsd\conf\ssl\server |
5 |
assword file |
.keypasswd-ecc |
%UCNP_HOME%\PP\uCPSB\httpsd\conf\ssl\server |
|
6 |
Server certificate |
httpsd-ecc.pem |
%UCNP_HOME%\PP\uCPSB\httpsd\conf\ssl\server |
|
7 |
Both RSA/ECC |
CA certificate |
anycert.pem |
%UCNP_HOME%\PP\uCPSB\httpsd\conf\ssl\cacert |