Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
926
Views
0
Helpful
2
Replies

LMS 4.0 Multi-Server setup

Go to solution
tmcls
Level 1
Level 1

‎03-25-2011 09:07 AM

I have a problem setting up a multi-server setup. On my remote LMS/slave servers, I can import the Peer Certificate from my master LMS server and on the slave servers I can import the Master server cert. However, when I go to the Single Sign-On of the slave server it states that the cert is not installed/valid. So, I go back to the Peer Server Certificate setup and look at the cert imported and states it is valid. All self signed certificates.

Question: Should I make new self signed certs for each server? Or/How do I make new cert within LMS(I believe in the setup you added the values)? Is there a log in LMS that I can check this process?

From reading the docs, I don't see anything. Any insight would be greatly appreciated.

thanks,

John

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-25-2011 12:33 PM

There is a perl script, sslutil.pl, in your LMS installation (under $nmsroot\MDC\Apache) that will allow you to validate your server's certificate. Assuming a  default installation on Windows, you can use:

"C:\Program Files (x86)\CSCOpx\bin\perl.exe" "C:\Program Files (x86)\CSCOpx\MDC\Apache\sslutil.pl"

from a command window

My experience (using 3rd party signed certifcates) is that LMS is very particular abou the ownership (casuser needs to own) of the file and directory in which the certificate and key files are stored.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-25-2011 12:33 PM

There is a perl script, sslutil.pl, in your LMS installation (under $nmsroot\MDC\Apache) that will allow you to validate your server's certificate. Assuming a  default installation on Windows, you can use:

"C:\Program Files (x86)\CSCOpx\bin\perl.exe" "C:\Program Files (x86)\CSCOpx\MDC\Apache\sslutil.pl"

from a command window

My experience (using 3rd party signed certifcates) is that LMS is very particular abou the ownership (casuser needs to own) of the file and directory in which the certificate and key files are stored.

0 Helpful

Go to solution
tmcls
Level 1
Level 1
In response to Marvin Rhoads

‎03-28-2011 11:45 AM

Thanks, that was very helpful. That util let me see my errors on the SSL cert. that my other boxes didn't like.

0 Helpful
Customers Also Viewed These Support Documents