Catalin
You are right theoretically, but what we found is that the wasp seems to only look in the "wasp" alias of the keystore. So even though you are only doing a renewal of an existing server certificate the whole certificate chain is stored under the wasp alias, thus even though the intermediate and root certs have not changed they still need to be added to the updated cert file and the whole chain loaded at the cert import step.
Regards, Andrew
------------------------------
Knows a little about UIM/DXim, AE, Automic
------------------------------
Original Message:
Sent: 05-05-2021 01:54 AM
From: Catalin Farcasanu
Subject: Renew SSL Cert
Isn't a renewal an actual generation of a new SSL certificate? It should be no difference from the installation of a new certificate from an existing one. The only difference would be with the import of the certificate chain into the existing trust store. If your certificate is signed with the same CA, you most probably won't have to make any changes to it.
------------------------------
Senior Consultant
SolvIT Networks
Original Message:
Sent: 05-03-2021 11:30 AM
From: Robert Jones
Subject: Renew SSL Cert
In the process of renewing a SSL cert for our Operator Console. I have reviewed and used the online doc
https://techdocs.broadcom.com/us/en/ca-enterprise-software/it-operations-management/unified-infrastructure-management/20-3/installing/optional-post-installation-tasks/Configure-HTTPS-in-Admin-Console-or-OC-(Authority-Signed-SSL-Certificate).html
But, is this the process we should use to renew a ssl? The Instructions in the list above seem to talk about a generating a new cert.
Thanks in advance for all responses.
RJ