Importing Quorum Witness server certificate

Prerequisites

Generate a CSR using a CSR generation tool available in your local system for a Quorum Witness (QW) server. You cannot import a QW server certificate from HPE SSMC.

Procedure
  1. Generate a CSR.
  2. Get a signed certificate from CA for the QW server.
  3. Import the cert.pem, cacert.pem, and QW client root CA to /usr/local/etc directory on the QW server. The import file must be in .pem format.

    1. Assemble a server certificate bundle (cert.pem) for use by the local QW server. The bundle includes QW server private key, server certificate, and the server CA trust chain.

    2. Save the bundle file as cert.pem.

    3. Import the bundle file (cert.pem) to /usr/local/etc.

    4. Import the root CA cert file (cacert.pem) to /usr/local/etc.

    To start running QW on the server and HPE Storage System after installing the certificates, run the following commands on the QW server: 

    $systemctl stop qwserv
$systemctl start qwserv
$systemctl status qwserv

    Confirm that the command is running.