Generate SSL Certificates

Clear the “request was aborted:Could not create ssl/tls secure channel” error.

Issue:
The generated SSL cert on the pool master isn’t good enough for Windows 10.

Fix:
Make a new certificate.

Modify the shell script /opt/xensource/libexec/generate_ssl_cert and find the section that reads:

openssl genrsa > privkey.rsa
openssl req -batch -new -x509 -key privkey.rsa -days 3650 -config config -out cert.csr
openssl dhparam 512 > dh.pem

Change it to the following:

openssl genrsa 1024 > privkey.rsa
openssl req -batch -new -x509 -key privkey.rsa -days 3650 -config config -out cert.csr
openssl dhparam 1024 > dh.pem

Run the following commands

mv /etc/xensource/xapi-ssl.pem /etc/xensource/xapi-ssl.pem.bak
/opt/xensource/libexec/generate_ssl_cert "/etc/xensource/xapi-ssl.pem" $(hostname -f)
xe-toolstack-restart

You should see it generating 1024 bit keys.

A reboot might be needed.

Ansible inventory from a csv file.

AWX on CentOS 8

Control Node Setup

Inventory from gathered facts.

oVirt - Windows Template

vCenter - Linux Templates

Windows Build Server

Windows Managed Node Setup

Export and Import Policies

Intro to Citrix

Upgrading Client VDA

Upgrading Components

Upgrading the Site and Database

Foreman Smart Proxy - FreeIPA DNS

IPA - Basic Commands

IPA - Fast and Dirty

APEX on Docker

OCI CLI setup

Oracle Database 19c EE

Oracle Database 21c

Oracle Enterprise Manager 13.5 on OL8

Oracle Enterprise Manager Cloud Control 13c

Oracle ORDS and Apache

Oracle Response Files

Oracle XE and APEX on CentOS 7

BookStack on CentOS 7

Evergreen ILS on Ubuntu 18.04

Matomo on CentOS 7

mod_GeoIP on CentOS 7

Check boot filesystem

Generate SSL Certificates

Install - Network

Install - Physical Media

Networking

Storage Repositories

VM Networking

ZFS

Generate SSL Certificates

No Comments