How to automate creation of SSL certs and CSRs on an IBM Remote Supervisor Adapter II
Posted on 2006-03-23
The IBM Remote Supervisor Adapter II (RSA2 Card) allows you to manage a server through a web browser. The RSA2 card has its own embedded web server that operates independent of the operating system on the server itself. In order for connections to the card to be secure, you obviously need an SSL certificate installed for the embedded web server. Unfortunately, IBM doesn't provide any method for automating the process of generating and installing certificates or CSRs. The only way to install the certificate is through a manual process requiring you to use a web browser to type in all of the information and then download the resulting CSR which you can then submit to a CA.
Obviously, that kind of process doesn't scale well when you are trying to set up SSL for hundreds or thousands of servers. So how do you automate it? I had some ideas that using "curl" or something might work, but I can't seem to get it right.
If anybody has a server with the Remote Supervisor Adapter and can figure out a way to accomplish this, well, you'll be better than IBM's support staff.