Recently Viewed Topics
Create a Custom CA and Server Certificate
Optionally, create a new custom CA and server certificate for the PVS server using the
pvs-make-certcommand. This places the certificates in the correct directories.
When prompted for the host name, enter the DNS name or IP address of the server in the browser (eg., https://hostname:8835/ or https://ipaddress:8835/). The default certificate uses the host name.
If you wish to use a CA certificate instead of the PVS generated one, make a copy of the self-signed CA certificate using the appropriate command for your OS:
# cp /opt/pvs/var/pvs/ssl/cacert.pem /opt/pvs/var/pvs/ssl/ORIGcacert.pem
copy \ProgramData\Tenable\PVS\pvs\ssl\cacert.pem C:\ProgramData\Tenable\PVS\pvs\ssl\ORIGcacert.pem
# cp /Library/PVS/var/pvs/ssl/cacert.pem /Library/PVS/var/pvs/ssl/ORIGcacert.pem
If the authentication certificates are created by a CA other than the PVS server, the CA certificate must be installed on the PVS server. Copy the organization's CA certificate to the appropriate location for your OS:
Once the CA is in place, restart the PVS services.
After PVS is configured with the proper CA certificate(s), users may log in to PVS using SSL client certificates.