Browse Prior Art Database

Certificate management in a multi-server environment

IP.com Disclosure Number: IPCOM000124659D
Original Publication Date: 2005-May-03
Included in the Prior Art Database: 2005-May-03
Document File: 3 page(s) / 66K

Publishing Venue

IBM

Abstract

Disclosed is a mechanism that provides a simple and effective way to review the credentials of multiple servers in one step instead of stepping through each server individually. When managing multiple servers it is often required that a trust relationship be established between the user and each server. Stepping through the credentials of each server is a cumbersome and time consuming process.

This text was extracted from a PDF file.
At least one non-text object (such as an image or picture) has been suppressed.
This is the abbreviated version, containing approximately 54% of the total text.

Page 1 of 3

Certificate management in a multi -server environment

Disclosed is a mechanism that provides a simple and effective way to review the credentials of multiple servers in one step instead of stepping through each server individually. When managing multiple servers it is often required that a trust relationship be established between the user and each server. Stepping through the credentials of each server is a cumbersome and time consuming process.

One embodiment of this technique uses an administrative console, such as the IBM Express Runtime console, to performs cross-server tasks. The connections between the management console server and remote managed servers is secured via HTTPS. Each managed server has a unique, self-signed certificate. When a connection is established between a managed server and the management console, the user is prompted to accept the self-signed certificate. When multiple servers are involved in completing a task, multiple certificates must be accepted. Figure 1 illustrates a task that must access Server1, Server2, and Server3. When the task starts, it invokes a method that collects information about any certificates that must be accepted. The information is displayed to the user in a table, as shown in Figure 2.

Browser

Console

Server1

Server2

Server3

Get Page

Request authorization for Certificate 1 Certificate 2 Certificate 3

  Get Certificate Return Certificate 1

  Get Certificate Return Certificate 2

  Get Certificate Return Certificate 3

...