Spectre Lumeta comes with a self-signed certificate that allows Secure Sockets Layer (SSL) for the web GUI out of the box. Best practice is to request and install a certificate from a trusted Certificate Authority (CA) that verifies the authenticity of the Spectre Lumeta system and avoids users from receiving warning messages like the one below:
Transfer the "Command-Center-IP".cer public key to the Command Center via winscp into the same directory as the private key. SPECTRE Lumeta requires the Server certificate file be in pkcs12 format and a bundle of the Server private key and public key. The below openssl commands assumes the Command Center public key "Command-Center-IP".cer is in pkcs7 format.
- Through CLI: On the Command Center CLI type the following command to install the certificate:
certificate server install "pathto/file/filename" "friendly-name" "private.key password"
- Through WEB UI:
- Copy the "CC-ipaddress-pkcs12".p12 off the Command Center to your directory.
- On the UI navigate to Spectre Lumeta Systems and Manage PKI.
- Select Server Certificate from the Certificate Type. Upload the Certificate and input the Friendly Name and Password.