Symantec IGA

  • Private Community
 View Only

  • 1.  https certificate issue

    Posted Jul 25, 2019 09:56 AM
    Hi All,

            How we can change the below identity portal web url certificate with customer certificate, its showing not secure. can you please suggest.



  • 2.  RE: https certificate issue
    Best Answer

    Broadcom Employee
    Posted Jul 25, 2019 10:10 AM
    Hello!

    This will address the UI certificates. There are additional instructions in the administration guide for other components. Please refer to this section of the administration guide. I'm also attaching my person notes below.
    https://docops.ca.com/ca-identity-suite/14-3/EN/virtual-appliance/administering-virtual-appliance#AdministeringVirtualAppliance-ReplacingVirtualApplianceWebUISSLCertificate

    For the Virtual Appliance using custom certificates:

    Copy both cert.pem and privkey.pem to vApp using WinSCP or similar utility

    Rename to localhost.crt and localhost.key respectively.

    mv privkey.pem localhost.key

    mv cert.pem localhost.crt

    Limit permissions

    chmod 640 localhost.*


    NOTE! Save the original certs for back-up purposes
             
    Copy to the cert location

    cp localhost.crt /opt/CA/VirtualAppliance/custom/apache-ssl-certificates

    cp localhost.key /opt/CA/VirtualAppliance/custom/apache-ssl-certificates

    Reload the web server

    sudo /etc/init.d/httpd reload

    Check the site in a browser


    Thanks,
    Jeremy

    ------------------------------
    Broadcom
    ------------------------------

    Original Message


  • 3.  RE: https certificate issue

    Posted Jul 26, 2019 04:37 AM
    Hi Jeremy Miller,

        Thanks for update. so if i changed here, then automatically it will update for all the IDM and IP UI browsers correct?

    Thanks,
    Jeevan
    Original Message


  • 4.  RE: https certificate issue

    Broadcom Employee
    Posted Jul 26, 2019 09:32 AM

    Hi Jeevan,

    Yes, that is correct. You will need to do this per vApp (each vApp in the cluster).

    Thanks,

    Jeremy



    ------------------------------
    Broadcom
    ------------------------------

    Original Message


  • 5.  RE: https certificate issue

    Posted Aug 27, 2019 08:54 AM
    Hi Miller,
      
         Thanks for the reply. Here customer was asking me provide self signed certificate for the IP and IDM, and IG url's. So from where we can get the self signed certificates from virtual appliance?

    Thanks,
    Jeevan
    Original Message