This procedure describes how to apply your own certificates signed by approved third-parties. This is achieved by running the Manage_SSL_BYO script on the Control-M/EM Server, and then running the script that was generated in the deployment directories, on the relevant components' installations.
NOTE: To update the Control-M/EM certificate, see Certificates.
The certificate that you apply must be a valid X509 certificate.
The following components are supported:
Before you begin
You must already have one or all of the following: the signed certificate, its private key, and its CA chain in one of the following formats:
NOTE: All components must be signed using the same CA Certificate. Private key passwords must exist for PKCS#12 and PEM, however the Certificate PEM must not to be locked/protected by password.
To apply the certificates:
Parent Topic |