- Use an SFTP tool to upload the server.crt and server.key files to the /home/ivs_omu_portal/httpd/conf directory on the server and replace the original files.
If the CA is changed, use an SFTP tool to upload the new root certificate root_cert.cer to the \home\ivs_omu_portal\htdocs\Templet directory on the server and replace the original file.
NOTE:- The default server CA is Huawei Enterprise UC&C ProductLine CA (20130129).
- For a server that has been hardened, upload the new certificate files to the /tmp directory and then copy the new certificate files to the /home/ivs_omu_portal/httpd/conf directory. Upload of the root certificate file is similar.
- If the original certificate files do not exist in the /home/ivs_omu_portal/httpd/conf directory, you need to change the owners and properties of the new certificate files after they are copied to this directory. If the original certificate files exist, you do not need to change the owners and properties of the new certificate files. Operations on the root certificate file are similar.
- Log in to the server as the admin user and run the su - root command to switch to the root user.
Enter the password of the root user as prompted and press Enter.
- Access the /home/ivs_omu/bin directory.
cd /home/ivs_omu/bin
- Run the ./Encrypt_Certificate_Password command to start the tool.
- Enter the certificate password as prompted and press Enter.
- The certificate password complexity is determined by the CA. Use the certificate issued by a trusted CA.
- The ivs_key.txt file is generated.
- Replace the ivs_key.txt file in the /home/ivs_omu_portal/httpd/bin directory.
cp ivs_key.txt /home/ivs_omu_portal/httpd/bin