Previous Topic: Add the Trusted Root Certificate to All Other CA User Activity Reporting Module ServersNext Topic: Deploy the New Certificates

Administration GuideCustom CertificatesAdd the Certificate Common Name to an Access Policy

Add the Certificate Common Name to an Access Policy

The CAELMCert.cer certificate is used by all CA User Activity Reporting Module services to communicate with the management CA User Activity Reporting Module server. If you replace CAELMCert.cer with a custom certificate, you must add this custom certificate's common name (cn) to the AdministerObjects policy on the management server or the standalone CA EEM server.

Note: It is not necessary to delete [User] CERT_CAELM identity, the common name of the default certificate, from this policy.

To add the custom certificate's common name to the AdministerObjects policy

  1. Browse to the management CA User Activity Reporting Module server or the standalone CA EEM server by entering the appropriate URL. 
    https://<management_server_hostname>:5250/spin/calm

    https://<EEM_server_hostname>:5250/spin/eiam
  2. Log in with Administrative privileges to the CA User Activity Reporting Module management server. If accessing a standalone CA EEM, log in as the EiamAdmin user.
  3. Click the Administration tab, the User and Access Management subtab, and the Access Policy link in the left pane. If logged into a standalone CA EEM, click the Manage Access Policies tab.
  4. Click the Scoping Policies link.

    The Policy Table of scoping policies appears in the main pane.

  5. Scroll to the Administer Objects policy and select the AdministerObjects link.

    The AdministerObjects policy opens in edit mode.

  6. Add the common name (cn) of the custom certificate as follows:
    1. Enter the common name of the custom certificate in the Identity field.
    2. Click the arrow to move your entry.

      [User}<custom certificate cn> appears in the Selected Identities list.

  7. Click Save.

    The AdministerObjects policy is saved with the addition of the common name of your custom certificate as an identity granted read and write access to the resources listed in this policy.

  8. Click Close and log out of the CA User Activity Reporting Module user interface.