Sec/User Mgmt: Disable PKI

Document created by RSA Information Design and Development on Apr 11, 2019Last modified by RSA Information Design and Development on Apr 26, 2019
Version 2Show Document
  • View in full screen mode

Note: If NetWitness Platform users or Administrators are unable to access the NetWitness Platform UI and want to use user name and password based authentication, you must disable PKI using the command line. See, Disable PKI using command line.

Disable PKI Authentication

  1. In NetWitness Platform, go to ADMIN > Security
    The Security view is displayed with the Users tab open.
  2. Click the PKI Settings tab.
  3. In the PKI Based Authentication Status section, select Disabled.
    The PKI Based Authentication Disabled dialog is displayed.
    Appy PKi configuration message
  4. Click Yes.

Note: After disabling the PKI, wait for some time, close the browser, and open NetWitness Platform in a new browser.

Disable PKI using command line

  1. SSH to access root@node-0.
  2. Run the following command:
    1. nw-shell.
    2. login {Enter the username and password to login}
    3. connect --service orchestration-server
    4. cd /rsa/orchestration/userpki/disable-pki-on-hosts
    5. invoke
    6. connect --service admin-server
    7. cd /rsa/security/authentication/web/pki-enabled
    8. set false
    9. cd/rsa/security/pki/client-auth
    10. set WANT
    11. exit
    12. systemctl reset rsa-nw-admin-server
    13. systemctl reset-nw-security-server

Note: The command systemctl restart rsa-nw-admin-server restarts the admin server and systemctl restart rsa-nw-security-server restarts the security server.

You are here
Table of Contents > (Optional) Set Up Public Key Infrastructure (PKI) Authentication > Disable PKI