Changes between Version 20 and Version 21 of IamProjectCerts


Ignore:
Timestamp:
02/27/13 12:31:17 (12 years ago)
Author:
lttoth@…
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • IamProjectCerts

    v20 v21  
    2323NOTES: 
    2424* The following procedure was followed to determine the status of certificates on each server.  Using the command shown below, OpenSSL commands were issued to each functional identity, followed by an OpenSSL command to the actual server host name.  I.e., idp.alaska.edu followed by hanin.alaska.edu, heald.alaska.edu, and howkan.alaska.edu. 
    25 * The following hosts had different Certificate responses from their InCommon Identity, i.e., edir.alaska.edu produced the certificate shown while the following hosts associated with that domain had different certificates. 
    26 ** Eklutna, Edgar, Egegik, Elias 
    27 * The following hosts are unreachable via OpenSSL within the UA-OIT firewall network.  A test must be run from within RPTP.alaska.edu 
    28 ** idmp[0-7], idmq[1,2], idmt[0,1], Inner, Pyrite, Patton, Nowhere 
     25* The following hosts had different Certificate responses from their !InCommon identity, i.e., edir.alaska.edu produced the certificate shown while the following hosts associated with that domain had different certificates: Eklutna, Edgar, Egegik, Elias 
     26* The following hosts are unreachable via OpenSSL within the UA-OIT firewall network.  A test must be run from within RPTP.alaska.edu: idmp[0-7], idmq[1,2], idmt[0,1], Inner, Pyrite, Patton, Nowhere 
    2927* Via OpenSSL, Amazon provides the same certificate as alligator.alaska.edu and idp.alaska.edu.  The location of the CRT however, is unknown.  The certificate expiration date provided at /etc/httpd/certs/amazon-casshib.crt is 2012/09/29. 
    3028