sun.com  |  docs.sun.com
 
How To Buy   |   My Sun   |   Worldwide Sites
 
Sun Microsystems Logo
 Products and Services
 		 Support and Training
 
 

A  B  C  D  E  F  G  H  I  J  K  L  M  N  O  P  Q  R  S  T  U  V  W  X  Y  Z  
 
User Commandscreate-ssl(1)

NAME

 create-ssl - creates the SSL element in the HTTP listener or IIOP listener

SYNOPSIS

 create-ssl --user admin_user [ --password admin_password ] [ --host localhost ] [ --port 4848 ] [ --passwordfile filename ] [ --secure|-s ] --type [ http-listener|iiop-listener|iiop-service ] --certname cert_name [ --instance instance_name ] [ --ssl2enabled=false ] [ --ssl2ciphers ssl_2_ciphers ] [ --ssl3enabled=true ] [ --ssl3tlsciphers ssl3_tls_ciphers ] [ --tlsenabled=true ] [ --tlsrollbackenabled=true ] [ --clientauthenabled=false ] [ listener_id ]

DESCRIPTION

 

Creates the ssl element from the HTTP listener or IIOP listener.

OPTIONS

 
--user
administrative user associated for the instance.
--password
administrative password corresponding to the administrative user.
--host
host name of the machine hosting the administrative instance.
--port
administrative port number associated with the administrative host.
--secure
indicates communication with the administrative instance in secured mode.
--passwordfile
file containing passwords appropriate for the command (e.g., administrative instance).
--instance
name of the instance.
--type
type of service or listener that the SSL is created for. The type can be: http-listener, iiop-listener, and iiop-service.
--certname
nickname of the server certificate in the certificate database or the PKCS#11 token. In the certificate, the name format is tokenname:nickname. Including the tokenname: part in this attribute is optional.
--ssl2enabled
determines whether SSL2 is enabled.
--ssl2ciphers
a comma separated list of the SSL2 ciphers used. Use the prefix + to enable or - to disable. Allowed values are: rc4, rc4export, rc2, rc2export, idea, des, desede3. If no value is specified, all supported ciphers are assumed to be enabled.
--ssl3enabled
determines whether SSL3 is enabled.
--ssl3ciphers
a comma separated list of the SSL3 ciphers used. Use the prefix + to enable or - to disable. Allowed values are: rsa_rc4_128_md5, rsa_3des_sha, rsa_des_sha, rsa_rc4_40_md5, rsa_rc2_40_md5, rsa_null_md5. Allowed TSL values are: rsa_des_56_sha, rsa_rc4_56_sha. If no value is specified, all supported ciphers are assumed to be enabled.
--tlsenabled
determines whether TLS is enabled.
--tlsrollbackenabled
determines whether TLS rollback is enabled. TLS rollback should be enabled for Microsoft Internet Explorer 5.0 and 5.5.
--clientauthenabled
determines whether SSL3 client authentication is performed on every request independent of ACL-based access control.

OPERANDS

 
listener_ID
the ID of the listener or service that the SSL is created for.

EXAMPLES

 Example 1. Using create-ssl
 
  
asadmin> create-ssl --user admin --password adminadmin --host fuyako 
--port 7070 --type http-listener --certname sampleCert --instance server1 
--ssl2enabled=true --ssl2ciphers +rc4,+rc2,+des --ssl3enabled=false 
--ssl3tlscipers +rsa_rc4_128_md,+rsa_3des_sha,+rsa_des_sha,+rsa_rc4_40_md5 
--tlsenabled=false --tlsrollbackenabled=false --clientauthenabled=false 
http-listener-1
Created SSL in HTTP Listener

Where: SSL is created for http-listener-1.

EXIT STATUS

 
0
command executed successfully
1
error in executing the command

SEE ALSO

 

delete-ssl(1)


Go To TopLast Changed April 2004
Company Info   |   Contact   |   Copyright 2003 Sun Microsystems, Inc. All rights reserved. Use is subject to license terms.