Administration GuideCustom Certificates › Add the Certificate Common Name to an Access Policy

Previous Topic: Add the Trusted Root Certificate to All Other CA Enterprise Log Manager Servers

Next Topic: Deploy the New Certificates

Add the Certificate Common Name to an Access Policy

The CAELMCert.cer certificate is used by all CA Enterprise Log Manager services to communicate with the management CA Enterprise Log Manager server. If you replace CAELMCert.cer with a custom certificate, you must add this custom certificate's common name (cn) to the AdministerObjects policy on the management server or the standalone CA EEM server.

Note: It is not necessary to delete [User] CERT_CAELM identity, the common name of the default certificate, from this policy.

To add the custom certificate's common name to the AdministerObjects policy

  1. Browse to the management CA Enterprise Log Manager server or the standalone CA EEM server by entering the appropriate URL. 
    https://<management_server_hostname>:5250/spin/calm

    https://<EEM_server_hostname>:5250/spin/eiam
  2. Log in with Administrative privileges to the CA Enterprise Log Manager management server. If accessing a standalone CA EEM, log in as the EiamAdmin user.
  3. Click the Administration tab, the User and Access Management subtab, and the Access Policy link in the left pane. If logged into a standalone CA EEM, click the Manage Access Policies tab.
  4. Click the Scoping Policies link.

    The Policy Table of scoping policies appears in the main pane.

  5. Scroll to the Administer Objects policy and select the AdministerObjects link.

    The AdministerObjects policy opens in edit mode.

  6. Add the common name (cn) of the custom certificate as follows:
    1. Enter the common name of the custom certificate in the Identity field.
    2. Click the arrow to move your entry.

      [User}<custom certificate cn> appears in the Selected Identities list.

  7. Click Save.

    The AdministerObjects policy is saved with the addition of the common name of your custom certificate as an identity granted read and write access to the resources listed in this policy.

  8. Click Close and log out of the CA Enterprise Log Manager user interface.