Previous Topic: Implementing Custom Certificates

Next Topic: Add the Trusted Root Certificate to All Other CA Enterprise Log Manager Servers

Add the Trusted Root Certificate to the Management CA Enterprise Log Manager Server

First, you obtain a Trusted Root Certificate in PEM format from the Certifying Authority (CA). Then you add this Trusted Root Certificate into the iTechnology SPIN web interface of the management server or standalone CA EEM.

To add the Trusted Root Certificate to the management CA Enterprise Log Manager

  1. Browse to the CA iTechnology SPIN web interface of the management CA Enterprise Log Manager server or the standalone CA EEM.
    https://<management_ELM_hostname>:5250/spin
    
    https://<EEM_hostname>5250/spin
    

    The CA iTechnology SPIN page appears.

  2. Select iTech Administrator from the drop-down list and click Go.

    The iTechnology Administrator page appears with a Login link.

  3. Click Login.

    The CA iTechnology logon dialog appears.

  4. Enter the EiamAdmin credentials, select iAuthority, and click Log In.
  5. Select the iAuthority tab and add the Trusted Root to iAuthority.conf as follows:
    1. Enter a Label for the certificate. Do not enter "myself" as the label.
    2. Browse and select the .cer file.
    3. Click Add Trusted Root.

    The confirmation message indicates that the trust root is added to the iAuthority.conf, a file that exists only on the management server or on the standalone CA EEM.

  6. If you use a standalone CA EEM, skip to the last step.
  7. If you are replacing the CAELM_AgentCert.cer certificate with a custom certificate, add the Trusted Root to iControl.conf as follows:
    1. Select the Configure tab.
    2. Enter the same Label for the certificate that you entered in the previous step.
    3. Browse and select the same root PEM (.cer) file that you selected in a previous step.
    4. Click Add Trusted Root.

    The confirmation message indicates that the trusted root of the custom certificate is added to the iControl.conf file in the iTechnology directory of the management CA Enterprise Log Manager server.

  8. Click Logout and close the iTechnology SPIN.