---+ Set Up Certificate Authority and Issuer The following Step-by-Step guide walks you through set up of an X.509 certificate issuer and HTTPS listener, and generation of ODS user certificates. ---+++ Prerequisites 1 Install the [[https://virtuoso.openlinksw.com/download/][ODS Framework]] and [[https://virtuoso.openlinksw.com/download/][Virtuoso Conductor]] VAD packages. %BR%%BR%

%BR%%BR% 1 [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtSetupSSLVirtuoso][Set Up the Virtuoso HTTPS Listener]] to host the Certificate and Public Key. Note: If the DefaultHost setting value in the Virtuoso INI file is changed, the ODS VAD package must be re-installed before the steps below will succeed. ---+++Configure ODS Endpoints 1 Go to *Conductor* -> *System Admin* -> *Security* -> *Public Key Infrastructure* -> *Configure HTTPS Listeners*. 1 Click *Configure ODS Endpoints* %BR%%BR%

%BR%%BR% 1 Click *Create New Endpoint* %BR%%BR%

%BR%%BR% 1 Enter the home path for ODS, and save %BR%%BR%

%BR%%BR% 1 The new endpoint should now appear in the endpoint list. %BR%%BR%

%BR%%BR% 1 Go to the HTTPS site, e.g., https://<cname>:<port>/ods; in our example, https://localhost:4433/ods/. 1 If Firefox is used, it will complain that the certificate is not valid, so we must register the site's certificate. %BR%%BR%

%BR%%BR% 1 In Firefox certificate manager, Site's certificates add an exception: Firefox Tools -> Options -> View Certificates -> Servers -> Add Exception, %BR%%BR%

%BR%%BR% 1 Confirm exception. %BR%%BR%

%BR%%BR% 1 Return to ODS site, and register new user. %BR%%BR%

%BR%%BR% 1 [[ODSGenerateX509Certificate][Generate X.509 Certificate]] 1 Log out from ODS and refresh browser to simulate opening the ODS site. 1 Go to https://cname:ssl-port/ods/. The browser will ask for a certificate; select the one generated in the steps above. %BR%%BR%

%BR%%BR% 1 ODS presents your card, and asks whether to login with certificate. Confirm it. %BR%%BR%

%BR%%BR% 1 You should now be logged in to ODS via WebID Protocol. %BR%%BR%

%BR%%BR% --++Related * [[VirtODSPubSubHub][Setting up PubSubHub in ODS]] * [[VirtPubSubHub][PubSubHubBub Demo Client Example]] * [[VirtFeedPubSubHub][Feed subscription via PubSubHub protocol Example ]] * [[VirtPubSubHubACL][Setting Up PubSubHub to use WebID Protocol or IP based control lists]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtSPARQLSSL][Creating and Using a SPARQL-SSL based Endpoint]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtAuthServerUI][Set WebID Protocol ACLs using the Virtuoso Authentication Server UI]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtAuthFOAFSSLACL][WebID Protocol ACLs Tutorial]] * [[http://virtuoso.openlinksw.com/dataspace/dav/wiki/Main/VirtOAuthSPARQL][SPARQL OAuth Tutorial]] * [[VirtODSFOAFSSL][WebID Protocol Support in OpenLink Data Spaces]] * [[OdsKeyImport][CA Keys Import using Conductor]] * [[ODSGenerateX509Certificate][Generate an X.509 Certificate hosted WebID Guide]] * [[ODSBriefcaseFOAFSSLShareFile][ODS Briefcase WebID Protocol Share File Guide]] * [[http://esw.w3.org/topic/foaf+ssl][WebID Protocol Specification]] * [[https://foaf.me/simpleLogin.php][Test WebID Protocol Certificate page]] * [[http://test.foafssl.org/cert/][WebID Protocol Certificate Generation page]] * [[https://demo.openlinksw.com/sparql-ssl][Virtuoso Demo SPARQL-SSL Endpoint]] CategoryDocumentation CategorySecurity CategoryVirtuoso CategoryFOAF CategoryODS