000031174 - How to use the right certificate for RSA ECAT Agent

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support on Dec 3, 2019
Version 5Show Document
  • View in full screen mode

Article Content

Article Number000031174
Applies ToRSA Product Set: ECAT
RSA Product/Service Type: ECAT Agent
RSA Version/Condition: 4.x
Platform: Windows
IssueHow to use the right certificate for ECAT Agent.
ResolutionWhen you create ECAT agent using packager under the security tab, you choose client certificate, server certificate and ports needed from communication between ECAT agent & ECAT console server as per screenshot below

packger Agent creation

Now make sure they are the same values included in the following configuration files
ConsoleServer.exe.config under ECAT server directory

<add key="LocalHttpsServerPort" value="443"></add>
        <add key="LocalUdpServerPort" value="444"></add>
        <add key="LocalHttpsServerCert" value="EcatServerExported"></add>
        <add key="LocalHttpsClientCert" value="EcatClientExported"></add>

If values are not matched for some reason, there will be a communication failure or agent won't show as online in ECAT UI.