Manual SSL initialization

To initialize SSL manually using a certificate signed by a trusted Certificate Authority, do the following steps:

1. Use the web interface of the service processor to request an SSL certificate from a trusted Certificate Authority. For the detailed procedure, refer to the IBM® Remote Supervisor Adapter II SlimLine and Remote Supervisor Adapter II User's Guide
   (www.ibm.com/pc/support/site.wss/). Under Browse, select Servers, Family: xSeries 236, publications.
   Note:
   The certificate for the Certificate Authority must be in the i5/OS™ *SYSTEM certificate store.
2. Upon receipt of the new certificate from the Certificate Authority, use the web interface of the service processor to import the certificate into the service processor.
3. Use the procedure described in Change service processor configuration properties to change the properties of the service processor configuration for the server. Go to the Security tab and do the following steps:
   1. Select the Manually set up user and certificate option.
   2. For the Component option, select either Common name, E-mail address, or Organizational unit.
   3. For the Compare value, specify the corresponding information in the new certificate. This allows SSL to distinguish your certificates from other certificates signed by trusted Certificate Authorities in the i5/OS *SYSTEM certificate store. For example, you can specify the e-mail address that you used to receive a certificate from a well-known Certificate Authority.
   4. Press OK to save the change.
4. Change the password and complete initialization. See Service processor password.

To disable SSL, use the above procedure, but select the Do not use a certificate (requires physical security) option.