-
Anonymous users2024-02-06Create a local web page, bind an IP address or domain name, issue a certificate on the local server, and install it in the environment.
Note: The self-issued certificate will not trust the browser, which means that it has no effect.
-
Anonymous users2024-02-051.Find the JDK installation directory, run the console, and switch to this directory;
2.Use keytool to generate a certificate for Tomcat;
keytool -genkey -v -alias tomcat -keyalg rsa -keystore -validity 36500
3.generate certificates for clients;
keytool -genkey -v -alias huawei -keyalg rsa -storetype pkcs12 -keystore -validity 36500
4.It will be imported into Tomcat's trust certificate chain.
keytool-export -alias huawei -keystore -storetype pkcs12 -rfc
keytool-import -alias huawei -v -file -keystore
5.Export the certificate from the Tomcat certificate chain.
keytool-export -v -alias tomcat -file
6.Import Huawei's certificate chain to Tomcat's trust certificate.
keytool -import -v -file -alias huawei -keystore
7.Import Huawei's certificate chain to Tomcat's trust certificate.
keytool -import -v -file -alias huawei_ca -keystore
8.Configure tomcat
Two-way authentication: One-way authentication:
9.After the configuration is complete, you can verify whether the configuration is successful locally.
Convert the format to PEM format on the server.
openssl x509 -inform der -in -out
Run the following command to simulate a link with an application server:
One-way authentication simulates chain building
openssl s_client -connect ip:port -tls1 -cafile
Two-way authentication simulates chain building
openssl s_client -connect ip:port -cert -cafile -tls1
10.Send the generated sum certificate to the Huawei interface user.
-
Anonymous users2024-02-04The server uses win2008 r2 architecture to gradually increase, because the performance has been improved a lot, and it also comes with a configuration cache for some files, which greatly improves the efficiency and access of the first file. It is naturally a better choice for the built-in FTP, which is safe and convenient without choosing a third party. But the configuration is different from win2003, and the configuration process is as follows:
Open the IIS Manager Control Panel All Control Panel Items Administrative Tools - Internet Information Services (IIS) Manager
Right-click Add FTP Site
Fill in the FTP site name and the drive letter where it is located, this drive letter is more particular, if it is set as the FTP directory in the D drive, then just select the D drive.
Next, create a "localuser" directory under the D drive.
The key is that you can select "Basic" for authentication, select "All Users" for Allow Access, and check "Read, Write" for permissions
After the FTP is created, select FTP User Quarantine
Select Username Directory (Disable Global Virtual Directory) so that you can limit the creation of usernames to other user directories. The FTP setup is complete and ready for testing.
-
Anonymous users2024-02-03If you don't want to use a self-signed certificate, you need a certified domain name SSL, which can be resolved to the private IP on the DNS server on the intranet.
-
Anonymous users2024-02-021. **gworg obtains the https certificate.
2. IIS7 Install SSL Certificate:
3. IIS7 IIS8 automatically jump to.
Note: Other environments are available from the GWORG issuing authority. To install the firewall you need to set to allow port 443 or turn off the firewall, if the local server has a dongle installed, please allow port 443.
-
Anonymous users2024-02-01What exactly is the type of server? NGINX, IIS, Apache and other types of servers install and configure https certificates slightly differently, the specific guide web link here is more comprehensive, I hope it will be useful to you!
-
Anonymous users2024-01-31HTTPS certificate is issued and managed by a CA organization, you can apply for it at a CA organization, or you can apply for it at a company that is a CA agency product. Domestic legal and formal CA institutions are referred to by WoSign CA, CFCA, etc., and HTTPS certificate deployment guides.
-
Anonymous users2024-01-30Application for SSL certificate.
First of all, you need to choose an authoritative, safe and trustworthy CA organization.
CA, also known as Certificate Authority Center, is a trusted third party in e-commerce transactions, which bears the responsibility of verifying the legitimacy of the public key in the public key system, and the digital signature of the CA Center makes it impossible for attackers to forge and tamper with digital certificates.
Moreover, CA has rich industry experience and a professional technical service team, which can ensure that we receive professional products and technical support services during the certification process.
Buy the right SSL product.
Before purchasing SSL products, you must first understand the various types of SSL products in detail, and choose the appropriate SSL certificate type according to the type of your company. SSL certificates are generally divided into three types: EV, OV, and DV.
EV SSL certificate is applicable to: finance (banking, **, **, insurance), Internet finance (P2P, ** consignment, crowdfunding, financing, investment, wealth management) and industries with high security standards.
The OV SSL certificate is applicable to: Internet information, e-commerce, manufacturing industry, carrier, **, education and other industries.
DV SSL certificate is suitable for: small customers, individuals and test use.
Submission of attestimonial information.
The CA agency will conduct an inquiry from the ** organization to verify your company's qualifications, and you need to submit the following attestation materials by fax or scan.
Business license of enterprise legal person.
CSR file.
Organizational validation. The CA institution will make inquiries from ** institutions to verify the legitimacy and authenticity of the organization. This part requires no action from you.
Domain name verification: The CA organization will verify the domain name you submitted, and you need to click to confirm the email about domain name verification received in the domain name registrant's mailbox. Or in the form of DNS and HTML.
**Verification: Through **verification, the CA institution will verify with your company contact person through the number queried by 114, or the number confirmed by a third party on the annual report, and you need to pay attention to the answer** and verify the information.
Certificate issuance: After all verification, the CA agency certificate will send the certificate to you by email, the issuance cycle of different types of certificates is different, and the certificate issuance will be completed within 3-7 working days.
Installation of SSL certificates:You can look for help from Essence SSL.
-
Anonymous users2024-01-29You can do it where you apply for a domain name, and you just need to spend money.
-
Anonymous users2024-01-281. Make CSR files.
2. CA certification.
Submit the CSR to the CA, and the CA generally has two ways to certify:
1) Domain name authentication: Generally, through the way of administrator email authentication, this method of authentication is fast, but there is no enterprise name in the issued certificate;
2) Verify the enterprise**.
The DV certificate only verifies the ownership of the domain name, and the application for an OV or EV SSL certificate requires verification of both of the above two items, in which the EV SSL certificate can make the address bar of most browsers turn green and display the organization unit or company name.
Domain name certificates (DV SSL) are generally issued 24 hours after the user completes the confirmation email.
Enterprise certificate OV SSL and Enhanced certificate EV SSL require manual verification by the certificate service authority, which takes a long time to verify and the certificate is issued after the verification is passed. The successfully issued certificate will be sent to the user's subscription email by email, and you can also log in to the user center to query the certificate, so that you can successfully use the SSL certificate.
-
Anonymous users2024-01-27Any computer can be an HTTPS server, as long as you install IIS, correctly publish a **, resolve the address with the HTTPS protocol, and let him act as a server within the network range that you parse through, and the client can access it normally.
-
Anonymous users2024-01-261. Make sure that you are using an independent server (cloud server).
2. Login**: The GWORG issuing authority handles the SSL certificate with a high degree of trust.
3. After determining the domain name, go through the certification procedures according to the issuing authority.
4. After getting the certificate, it can be deployed to the server according to the technical documents, of course, if it will not be deployed, the issuing authority can also deploy the certificate.
-
Anonymous users2024-01-25Deploy an SSL certificate to achieve HTTPS encrypted access.
If you draw on 9600GT, some special effects may not work, so it's best to use ATI, such as 4870, which is good. Around 1999, if you want to make large-scale drawings, the dual-core CPU is still needed, after all, the output speed is fast, otherwise. Or render it and wait until you're gone >>>More
Now the smart hand is in charge, the computer entity is basically useless, the impact of small smart phones on the computer is too big, plus Microsoft Intel is not wrong, speed up the computer industry to perish, even the PC boss Microsoft has begun to make tablet PC two-in-one mobile products, maintenance and replacement configuration space is limited, basically the same as smart phones, what configuration is installed, no way to replace, the future of computers is getting lower and lower, now there are not many people playing computers, because too many people are lazy, Willing to look at the small screen of the broken mobile phone, but also too lazy to open the computer, sit still to look at the computer, people are lazy habits, convenient habits, no matter how small the screen hurts, no matter how bad the experience, but also insist on looking at the small mobile phone, thinking that the palm of the big smartphone is the highest technology enjoyment, playing a large number of small mobile phones is a hillbilly, I don't understand what is professional, like I can't, all day long to watch movies and games on the small mobile phone, I don't do it, I play any household appliances are to be professional, high-end version of the big game-level computer host EIZO 27-inch drawing monitor Sony 4K projector European, American and Japanese antique HIFI audio, just such a match will cost more than 50,000 investment, watch dramas or news with EIZO monitors, watch ultra-clear blockbuster movies with Sony 4K projector, so that I can use the projector to project more than 300 inches of ultra-clear large-screen movies on the projection cloth on the wall, + antique HIFI audio, the angle of view is shocking and three-dimensional + super cool enjoyment of the audio-visual experience, when playing large-scale games, EIZO 27-inch graphics display + high-end host + HIFI audio,Regardless of the viewing angle,Game experience,The sound effect is super cool enjoyment,Listening**Basically listen to it with the computer first,And then feel that the sound quality can be found in a lossless format**,Then burn a CD,Use Marantz CD**,Gall machine or antique HIFI audio amplify the sound,Finally, the ear receives,Relaxed,Three words cool,Comfortable,This collocation is the top entertainment equipment,That's like the vast majority of hillbillies now,Looking at a small smartphone all day long,That's called high-level enjoyment,Boring and boring, This kind of broken thing is also called enjoyment, when the transaction chat tool is used OK, there are very few people who really know how to enjoy now, there is no way there are too many hillbillies now, plus some brainless e-commerce companies blow the stick all day long to break the mobile phone how strong and how good, the entire computer market is exaggerated. The crowd with no professional knowledge followed into the hillbilly team.
1. Yes. It's not called put. It's called copying the contents of the disk to the computer. >>>More
How to create a LAN shared folder:
1. Write down the name of your computer, and see how to modify your computer name for details, you can check the references later. >>>More
Open the IE browser and it's the big blue E
Click "Tools" at the top to select the tnternet option. >>>More