Install a trusted CA certificate on the pool

Information

Using a certificate on the pool allows encrypted communications with the pool master through SSL. This check verifies that a certificate is installed on the pool. It does not verify whether the issuer is trusted.

http://www.citrix.com/support/security-compliance/common-criteria.html

Solution

Copy the certificate from a public or private CA to the pool master host. The certificate must be in Privacy Enhanced Mail (PEM) format. To install the certificate run this command:


xe pool-certificate-install filename=<ca_certificate_name.pem>

For more information see the Common Criteria Evaluated Configuration Guide for Citrix XenServer 6.0.2.

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-17

Plugin: Unix

Control ID: 2863f003a8130516286a0bf282a4923c7492ef09e9ad646d0c481df9cf040db0