<html>
  <head>
    <meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    <br>
    <div class="moz-cite-prefix">On 08/14/2014 03:07 PM, Punit Dambiwal
      wrote:<br>
    </div>
    <blockquote
cite="mid:CAGZcrBnMU3abABXFFUpDKiXmYQyopiTaAcJyjcCmU6+HRh_PoQ@mail.gmail.com"
      type="cite">
      <div dir="ltr">Hi All,
        <div><br>
        </div>
        <div>Is there any one can help me to solve this issue..</div>
      </div>
    </blockquote>
    <br>
    <br>
    Look for details at <a class="moz-txt-link-freetext" href="http://www.ovirt.org/Features/PKI">http://www.ovirt.org/Features/PKI</a>
    (User--SSL--&gt;apache--AJP--&gt;ovirt-engine), that may help you.<br>
    <br>
    <blockquote
cite="mid:CAGZcrBnMU3abABXFFUpDKiXmYQyopiTaAcJyjcCmU6+HRh_PoQ@mail.gmail.com"
      type="cite">
      <div dir="ltr">
        <div><br>
        </div>
        <div>Thanks,</div>
        <div>Punit</div>
      </div>
      <div class="gmail_extra"><br>
        <br>
        <div class="gmail_quote">On Wed, Aug 13, 2014 at 9:53 AM, Punit
          Dambiwal <span dir="ltr">&lt;<a moz-do-not-send="true"
              href="mailto:hypunit@gmail.com" target="_blank">hypunit@gmail.com</a>&gt;</span>
          wrote:<br>
          <blockquote class="gmail_quote" style="margin:0 0 0
            .8ex;border-left:1px #ccc solid;padding-left:1ex">
            <div dir="ltr">Hi All,
              <div><br>
              </div>
              <div>I have one question regarding the SSL settings in
                Ovirt....let me explain my environment first :-</div>
              <div><br>
              </div>
              <div>1. Ovirt engine :- <a moz-do-not-send="true"
                  href="http://mgmt.3linux.com" target="_blank">mgmt.3linux.com</a></div>
              <div>2. Standalone websocket proxy :- <a
                  moz-do-not-send="true"
                  href="http://web-proxy.3linux.com" target="_blank">web-proxy.3linux.com</a></div>
              <div>3. Our Own Portal :- <a moz-do-not-send="true"
                  href="http://portal.3linux.com" target="_blank">portal.3linux.com</a></div>
              <div><br>
              </div>
              <div>We have the above architecture...we fetch the VM
                console from the websocket proxy to our own portal
                through API....because still we are using selfsigned
                certificate...we need to trust the certificate every
                time,whenever we open the VM console... (<a class="moz-txt-link-freetext" href="https://">https://</a>&lt;<a
                  moz-do-not-send="true"
                  href="http://web-proxy.3linux.com" target="_blank">web-proxy.3linux.com</a>&gt;:&lt;port&gt;)</div>
              <div><br>
              </div>
              <div>When we initiate the VM console through our own web
                portal the url  (<a moz-do-not-send="true"
href="https://portal.3linux.com/content/ovirt/noVNC/vm-console.php?id=6e0caf73-ae7d-493e-a51d-ecc32f507f00"
                  target="_blank">https://portal.3linux.com/content/ovirt/noVNC/vm-console.php?id=6e0caf73-ae7d-493e-a51d-ecc32f507f00</a>),if
                we accept the SSL certificate with <a class="moz-txt-link-freetext" href="https://">https://</a>&lt;<a
                  moz-do-not-send="true"
                  href="http://web-proxy.3linux.com" target="_blank">web-proxy.3linux.com</a>&gt;:&lt;port&gt;
                ....then it will open as expected but if we didn't
                accept the certificate manually...then it through failed
                to connect:1006 error...</div>
              <div><br>
              </div>
              <div>We don't want that every time end user will accept
                the certificate manually...as our link to open VM
                console is different then webproxy....</div>
              <div><br>
              </div>
              <div>Now we want to replace the self signed certificate
                with valid SSL....can any one tell me where we need to
                put the certificates and how to generate the CSR for
                them and how many SSL we need to purchase to make this
                thing workable without accepting the certificate
                everytime....</div>
              <div><br>
              </div>
              <div>Thanks,</div>
              <div>Punit </div>
            </div>
          </blockquote>
        </div>
        <br>
      </div>
    </blockquote>
    <br>
  </body>
</html>