>>>>> On Fri, 24 Mar 2006 00:13:33 -0500, [EMAIL PROTECTED] said:
> Now my next question is from which network interface does the
> SGD server interact with the App servers. the peer DNS one or
> the external DNS?
I have a related thread on the Sun Forum:
----------------------------------------------------------------------
secondary NIC's vs. DNS names
Mar 23, 2006 6:27 PM
I have read the documentation defining "peer" and "external" DNS names:
http://sgd/tarantella/help/en-us/base/gettingstarted/peer_external.html
...in which it is stated "These two DNS names may be associated with
the same network card (NIC) on the Secure Global Desktop host, or they
may each use a different network card."
I want all SGD-related traffic to use the second NIC in my
server(s). So, for SGD's purposes, the peer and external names are the
same, but should be associated with the second server NIC. The problem
is that even though I give the "peer" DNS name associated with the
second network card (sgd.cens.nau.edu) on installation, the first
network card's name (naboo.cens.nau.edu) is what shows up in the
peerca used for intra-array communications:
[EMAIL PROTECTED]:~# tarantella security peerca --show
Alias name: naboo.cens.nau.edu CA
Creation date: Mar 2, 2006
Entry type: trustedCertEntry
Owner: CN=naboo.cens.nau.edu CA Cert
Issuer: CN=naboo.cens.nau.edu CA Cert
Serial number: 0
Valid from: Thu Mar 02 15:58:16 MST 2006 until: Sun Feb 28 15:58:16 MST 2016
Certificate fingerprints:
MD5: 35:D9:20:93:5D:FD:BA:2A:E8:CD:3D:26:98:F0:62:2E
SHA1: D2:E5:B2:B8:A3:D9:C5:20:FF:62:55:D9:6B:8B:39:1C:F0:62:25:03
I think this is a problem, as the array members should be using the
secondary NIC's name/address to communicate.
How can I recreate the peer CA cert with the correct hostname?
thanks,
-tom
_______________________________________________
SGD-Users mailing list
[email protected]
http://www.filibeto.org/mailman/listinfo/sgd-users
