-
Notifications
You must be signed in to change notification settings - Fork 0
Server Creating a Keypair
You need the openssl binary. This can be installed by running
sudo apt-get install openssl
sudo dnf install openssl
To generate the keypair run
openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem
SSC Server does not know where to look for your private & public key. So it looks by default in your home directory int the folder .sscs_conf ( ~/.sscs_conf ). You can move your generated certificates there under the name 'cert.pem' (public) and 'key.pem' (private) or you can put them in an absolute location and change the config via
ssc_server_config str SSCS_CERTFILE your_path_to_cert.pem
ssc_server_config str SSCS_KEYFILE your_path_to_key.pem
SSC Server also needs to know your private key passphrase. You can tell it your passphrase via
ssc_server_config str SSCS_KEYFILE_PW [private_key_password]
Your clients (people using your server) need to have the public keyfile (in this case cert.pem) in their '~/.ssc_conf/' folder under the name 'cert.pem' OR have it in an absolute location and have them change their client configuration via
ssc_client_config str HOST_CERT your_path_to_cert.pem