B.18 gateway server add

Authorizes an SGD server to use the SGD Gateway.

Syntax

gateway server add --server server-name 
                   --certfile cert-file 
                   --url server-url 
                 [ --ssl-certfile ssl-cert ]

Description

The following table shows the available options for this command.

Option

Description

--server

DNS name of the SGD server

--cert-file

Certificate Authority (CA) certificate for the SGD server

--url

URL for the SGD web server

--ssl-certfile

SSL certificate for the SGD server

The gateway server add command does the following:

  • Imports the CA certificate for the SGD server into the SGD Gateway keystore, at /opt/SUNWsgdg/proxy/etc/keystore. The CA certificate is stored to the keystore using an alias with the same name as the SGD server specified by the --server option.

  • Imports the SSL certificate for the SGD server into the SGD Gateway keystore, at /opt/SUNWsgdg/proxy/etc/keystore. The SSL certificate is stored to the keystore using an alias constructed by appending -ssl to the SGD server name specified by the --server option.

  • Adds the SGD server to the load balancing group used by the Apache reverse proxy server

Note

After using gateway server add, you must restart the SGD Gateway for any changes to take effect.

Examples

The following example adds the CA certificate PeerCAcert.pem to the SGD Gateway keystore, using the alias sgd.example.com. The SSL certificate cert.pem is also added to the keystore, using the alias sgd.example.com-ssl.

# /opt/SUNWsgdg/bin/gateway server add --server sgd.example.com \
--certfile PeerCAcert.pem \
--url https://sgd.example.com \
--ssl-certfile cert.pem

In this example, the URL for the SGD web server, https://sgd.example.com, is added to the reverse proxy load balancing group and a configuration file is created at /opt/SUNWsgdg/httpd/apache-version/conf/extra/gateway/servers/conf/sgd.example.com.conf.