SiteMinder Agent for SharePoint GuideToken-Signing Certificates Required by the Agent for SharePointHow to Request and Install a Policy Server Certificate for the Agent for SharePoint › Configure Certificate Support on Policy Servers

Previous Topic: Verify Certificate Support on Policy Servers

Next Topic: Add a Policy Server Signing Certificate to Policy Servers and Create a Trust File

Configure Certificate Support on Policy Servers

If any of your Policy Servers do not have the smkeydatabase configured, create the smkeydatabase on those Policy Servers. The Agent for SharePoint requires a smkeydatabase on each Policy Server in your environment.

Follow these steps:

  1. Log on to your Policy Server.
  2. Open a command prompt and navigate to the following directory: 
    policy_server_home
  3. Enter the following command: 
    smkeytool -createDB -password database_password -importDefaultCACerts
    -createDB

    Creates a smkeydatabase to store keys and certificates.

    -password smkeydatabase_password

    Sets a password for the encrypted data in database. The password is encrypted using the policy store key and added to the smkeydatabase.properties file.

    Limits: Length from 6 to 32 characters.

    -importDefaultCACerts

    (Optional) Imports the default Certificate Authority certificates during the creation of the database. These certificates are imported from the cacerts.keystore file, which contains all default Certificate Authority certificates.

    The smkeydatabase is created.

  4. Repeat Steps 1 through 4 on each Policy Server in your environment.