We use Lets Encrypt (well documented on web how to do), and run a daily script (again many on web/encrypt's site) to check the if less that 30 days on certificate and automatically generate another csr, get it signed, update the current file.
Works very well. You need the automation as lets encrypt only does free signing for 90 days.
Original Message:
Sent: 06-20-2019 10:09 AM
From: Gene HOWARD
Subject: Reconfiguring https on UMP
Currently not with the cert generated by the ump.
if you need an https cert for longer I would suggest walking through the process to get an SSL cert from a CA.
------------------------------
[Designation]
Principal Support Engineer
Broadcom
Original Message:
Sent: 06-20-2019 09:16 AM
From: Abhishek Singh
Subject: Reconfiguring https on UMP
Thanks Gene
I see that the generated certificate has validity for 1 year only
can we set the certificate expiration date somewhere
Original Message:
Sent: 06-20-2019 08:56 AM
From: Gene HOWARD
Subject: Reconfiguring https on UMP
You can not renew a Self Sign Certificate you can generate a new one.
please follow the below instructions to reset the keystore and this will allow you to generate a new Self signed cert
https://docops.ca.com/ca-unified-infrastructure-management/9-0-2/en/installing/optional-post-installation-tasks/configure-https-in-admin-console-or-ump
------------------------------
[Designation]
Principal Support Engineer
Broadcom
Original Message:
Sent: 06-20-2019 04:50 AM
From: Abhishek Singh
Subject: Reconfiguring https on UMP
Someone tried to configure our UMP to https a few years back and generated a self signed wasp certificate.
which apparently has expired now.
How can I renew that certificate?What steps should I consider if I need to reconfigure https from scratch, where first I intend to get rid of existing wasp.keystore and then create it again