The installation process generates two certificates and places them in the /opt/CA/SharedComponents/iTechnology directory of the CA User Activity Reporting Module server. You can use the installed certificates as is. These certificates have the following names, where ApplicationName is CAELM for the CA User Activity Reporting Module product.
This certificate is used by all CA User Activity Reporting Module services to communicate with the management server. The entry for this certificate also exists under the CALM.cnf file.
This certificate is used by all the Agents to communicate with the CA User Activity Reporting Module server.
Important! Replacing the CAELM_AgentCert.cer certificate with a custom certificate in an environment with active agents requires reinstallation of these agents.
To use custom certificates, you must first obtain a trusted root certificate from a Root Certificate Authority (CA). A certificate authority can issue multiple certificates in the form of a tree structure. All certificates below the trusted root certificate inherit the trustworthiness of the root certificate. This process assumes that if both certificates are being replaced, the custom service certificate and the custom agent certificate have the same trusted root.
Only custom certificates with .cer extensions are supported. After you obtain a trusted root certificate, the typical sequence of actions to implement custom certificates follows:
|
Copyright © 2013 CA.
All rights reserved.
|
|