Set Up Certificate Authority and Issuer

The following Step-by-Step guide walks you through set up of an X.509 certificate issuer and HTTPS listener, and generation of ODS user certificates.

Prerequisites

1. Install the ODS Framework and Virtuoso Conductor VAD packages.
   
   
   
   
2. Set Up the Virtuoso HTTPS Listener to host the Certificate and Public Key.

Note: If the DefaultHost setting value in the Virtuoso INI file is changed, the ODS VAD package must be re-installed before the steps below will succeed.

Configure ODS Endpoints

1. Go to Conductor -> System Admin -> Security -> Public Key Infrastructure -> Configure HTTPS Listeners.
2. Click Configure ODS Endpoints
   
   
   
   
3. Click Create New Endpoint
   
   
   
   
4. Enter the home path for ODS, and save
   
   
   
   
5. The new endpoint should now appear in the endpoint list.
   
   
   
   
6. Go to the HTTPS site, e.g., https://<cname>:<port>/ods; in our example, https://localhost:4433/ods/.
   1. If Firefox is used, it will complain that the certificate is not valid, so we must register the site's certificate.
      
      
      
      
   2. In Firefox certificate manager, Site's certificates add an exception: Firefox Tools -> Options -> View Certificates -> Servers -> Add Exception,
      
      
      
      
   3. Confirm exception.
      
      
      
      
7. Return to ODS site, and register new user.
   
   
   
   
8. Generate X.509 Certificate
9. Log out from ODS and refresh browser to simulate opening the ODS site.
10. Go to https://cname:ssl-port/ods/. The browser will ask for a certificate; select the one generated in the steps above.
    
    
    
    
11. ODS presents your card, and asks whether to login with certificate. Confirm it.
    
    
    
    
12. You should now be logged in to ODS via WebID? Protocol.
    
    
    
    

Related

• Setting up PubSubHub in ODS
• PubSubHubBub Demo Client Example
• Feed subscription via PubSubHub protocol Example
• Setting Up PubSubHub to use WebID Protocol or IP based control lists
• Creating and Using a SPARQL-SSL based Endpoint
• Set WebID Protocol ACLs using the Virtuoso Authentication Server UI
• WebID Protocol ACLs Tutorial
• SPARQL OAuth Tutorial
• WebID Protocol Support in OpenLink Data Spaces
• CA Keys Import using Conductor
• Generate an X.509 Certificate hosted WebID Guide
• ODS Briefcase WebID Protocol Share File Guide
• WebID Protocol Specification
• Test WebID Protocol Certificate page
• WebID Protocol Certificate Generation page
• Virtuoso Demo SPARQL-SSL Endpoint

CategoryDocumentation CategorySecurity CategoryVirtuoso CategoryFOAF CategoryODS