Administration GuideCustom Certificates › Add the Trusted Root Certificate to All Other CA Enterprise Log Manager Servers

Previous Topic: Add the Trusted Root Certificate to the Management CA Enterprise Log Manager Server

Next Topic: Add the Certificate Common Name to an Access Policy

Add the Trusted Root Certificate to All Other CA Enterprise Log Manager Servers

If you are replacing the CAELM_AgentCert.cer certificate with a custom certificate, you must add the Trusted Root Certificate into the iTechnology SPIN web interface of each additional CA Enterprise Log Manager server. In this procedure, you add the Trusted Root Certificate to CA iControl. This procedure is not needed if you are replacing only the CAELMCert.cer certificate.

To add the Trusted Root Certificate to CA iControl of each non-management CA Enterprise Log Manager server

  1. Log into the SPIN UI on the iGateway where a non-management server is running. Use the following URL: 
    https://<ELM_hostname>:5250/spin/

    The CA iTechnology SPIN page appears.

  2. Select iTech Administrator from the drop-down list and click Go.

    The iTechnology Administrator page appears with a Login link.

  3. Click Login.

    The CA iTechnology logon dialog appears.

  4. Enter the EiamAdmin credentials, select iAuthority, and click Log In.
  5. Select the Configure tab and add the Trusted Root as follows:
    1. Enter the same Label for the certificate that you entered in the previous step.
    2. Browse and select the .cer file.
    3. Click Add Trusted Root.

    The trusted root of the custom certificate is added to the iControl.conf file in the iTechnology directory. A confirmation message appears.

  6. Click Logout and close the iTechnology SPIN.