Installing Administration Station Certificates

To obtain encrypted communication between the Administration Station and the Screen, certificates must be installed on both machines. This can be done by either using self-generated certificates or by installing issued certificates. Both methods are done on the Administration Station.

To Create a Self-Generated Certificate on the Administration Station

1. Open a terminal window and create the required SKIP directories by typing:

   # skiplocal -i

2. Create the self-generated certificate on the Administration Station by typing:

   # skiplocal -k -f -V

   The local certificate ID appears. It is the Administration Station's 32-character certificate ID (MKID).

3. Write down the certificate ID, which begins with `Ox.'

4. Add SKIP to all the interfaces by typing:

   # skipif -a

5. Reboot to complete the installation by typing:

   # sync; init 6

The Administration Station's certificate ID has been generated. You next move to the Screen to install the SunScreen 3.1 Lite software.

To Install an Issued Certificate on the Administration Station

To do this procedure, you will need the Key and Certificate diskette.

1. Open a terminal window on the Administration Station and become root.

2. Create the required SKIP directories by typing:

   # skiplocal -i

3. Insert the Key and Certificate diskette into the Administration Station's diskette drive.

4. Install the SKIP keys by typing:

   # install_skip_keys -icg /floppy/floppy0

5. Start the SKIP daemon by typing:

   # skipd_restart

6. Eject the Key and Certificate diskette by typing:

   # eject floppy0

7. Write down the certificate ID, which is eight characters long.

8. Add SKIP to all the interfaces by typing:

   # skipif -a

9. Reboot to complete the installation by typing:

   # sync; init 6

   The Administration Station's certificate ID has been installed. You next move to the Screen to install the SunScreen 3.1 Lite software.