2014-07-07 03:01 AM - edited 2015-12-18 12:23 AM
Is there a way to replace the built in SSL Certificate delivered with SC 4.1 with an own self-signed or trusted one?
The Certificate Error stated due to the not matching hostname causes annoying error-messages and on certain hardened Browser-Settings prevents the GUI from loading altogether.
2014-07-07 11:50 PM
It's not about Server <> Agent, I'm referring to Server <> GUI/Browser
That the Server and Agent don't create individual Keys during installation is another thing.
Right now my concern is just the HTTPS-Certificate delivered from the Server that is issued to NetApp and a blank Host instead of our Company and the appropriate Hostnames.
2014-07-08 12:02 AM
Our Management-Environment is configured to block all HTTPS connections that don't deliver appropriate Certificates, so using SC via GUI is currently only possible with workarounds.
2014-07-09 05:11 AM
Here are the directions that I have.
SC Engineering said that these are the directions to change the Server/GUI HTTPS cert, not the agent/server cert:
To load customer specific keystore ( Created using the Customer Certificate and corresponding private keys)
Please let us know.
2014-07-11 04:25 AM
You can create directly the Java key store file (.jks) file.
In the below link -- refer to the section " Generate a Self Signed Certificate using Java Keytool" for creating the Java key store file.
2014-07-11 04:56 AM
Thanks for the Hint.
Selfsigned unfortunately won’t cut it, has to be signed by our own Company-CA.
So would need something to convert the signed Certs to the Java-Format.
2014-07-14 04:39 AM
Try the steps in these links to import certs in to a java key store.
BTW what is format of the signed certificate you have?