.png)
VNC console: How to setup
Firstly, it's nessary to say, that VNC console is the best type of consoles, because you can connect to VMs on Vmware Vcenter and to VMs on RHEV. But it's easy to set up VMRC and you have a lot of problem with VNC. So, in this article you will read about configuration VNC, which was tested.
Used materials:
https://access.redhat.com/articles/449033
https://jamielinux.com/docs/openssl-certificate-authority/index.html
http://serverfault.com/questions/359829/centos6-apache2-working-but-when-installing-enabling-ssl-server-wont-start
https://access.redhat.com/articles/449033
https://jamielinux.com/docs/openssl-certificate-authority/index.html
http://serverfault.com/questions/359829/centos6-apache2-working-but-when-installing-enabling-ssl-server-wont-start
Configuration step by step
2. https://jamielinux.com/docs/openssl-certificate-authority/create-the-intermediate-pair.html
3. https://jamielinux.com/docs/openssl-certificate-authority/sign-server-and-client-certificates.html
4. Then you should create key without pass phrase(password). You can do it using this:
openssl rsa -in /path/to/originalkeywithpass.key.pem -out /path/to/newkeywithnopass.key.pem5. You should set correct selinux context for files, which you will use:
chcon unconfined_u:object_r:httpd_config_t:s0 /path/to/certificate/filechcon unconfined_u:object_r:httpd_config_t:s0 /path/to/chain/chainfilechcon unconfined_u:object_r:httpd_config_t:s0 /path/to/key/keywithnopass6. Set new settings for Apache in file
/etc/httpd/conf.d/cfme-https-application.conf (or another file for earlier versions of ManageIQ EVM and CloudForms Management Engine - read https://access.redhat.com/articles/449033)SSLCertificateFile /path/to/certificate/fileSSLCertificateKeyFile /path/to/certificate/newkeywithnopass.keySSLCertificateChainFile /path/to/certificate/chainfile
7. Copy newkeywithnopass.key and certificate in
/var/www/miq/vmdb/certs/8. Set new settings for websocket:
10. Import chain file in
Authorities in browser.
0 comments: