Layer 7 Identity Management

Expand all | Collapse all

https certificate issue

Jump to Best Answer
  • 1.  https certificate issue

    Posted 07-25-2019 09:56 AM
    Hi All,

            How we can change the below identity portal web url certificate with customer certificate, its showing not secure. can you please suggest.



  • 2.  RE: https certificate issue
    Best Answer

    Posted 07-25-2019 10:10 AM
    Hello!

    This will address the UI certificates. There are additional instructions in the administration guide for other components. Please refer to this section of the administration guide. I'm also attaching my person notes below.
    https://docops.ca.com/ca-identity-suite/14-3/EN/virtual-appliance/administering-virtual-appliance#AdministeringVirtualAppliance-ReplacingVirtualApplianceWebUISSLCertificate

    For the Virtual Appliance using custom certificates:

    Copy both cert.pem and privkey.pem to vApp using WinSCP or similar utility

    Rename to localhost.crt and localhost.key respectively.

    mv privkey.pem localhost.key

    mv cert.pem localhost.crt

    Limit permissions

    chmod 640 localhost.*


    NOTE! Save the original certs for back-up purposes
             
    Copy to the cert location

    cp localhost.crt /opt/CA/VirtualAppliance/custom/apache-ssl-certificates

    cp localhost.key /opt/CA/VirtualAppliance/custom/apache-ssl-certificates

    Reload the web server

    sudo /etc/init.d/httpd reload

    Check the site in a browser


    Thanks,
    Jeremy

    ------------------------------
    Broadcom
    ------------------------------



  • 3.  RE: https certificate issue

    Posted 07-26-2019 04:37 AM
    Hi Jeremy Miller,

        Thanks for update. so if i changed here, then automatically it will update for all the IDM and IP UI browsers correct?

    Thanks,
    Jeevan


  • 4.  RE: https certificate issue

    Posted 07-26-2019 09:32 AM

    Hi Jeevan,

    Yes, that is correct. You will need to do this per vApp (each vApp in the cluster).

    Thanks,

    Jeremy



    ------------------------------
    Broadcom
    ------------------------------



  • 5.  RE: https certificate issue

    Posted 21 days ago
    Hi Miller,
      
         Thanks for the reply. Here customer was asking me provide self signed certificate for the IP and IDM, and IG url's. So from where we can get the self signed certificates from virtual appliance?

    Thanks,
    Jeevan