000027140 - Can there be multiple active certificates for a single application instance with an RKM client but not for all instances of the same application with the same client?

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000027140
Applies ToRSA Key Manager Client 2.7 SP1
RSA Key Manager Appliance 2.7 SP1
Issue

Can there be multiple active certificates for a single application instance with an RKM client but not for all instances of the same application with the same client?


Customer has 1500+ individual instances of the same application distributed worldwide in a way that does not require shutting them all down at once to do this replacement. The application is registered in RKM with one certificate so that no matter which of the 1500 instances communicates with the RKM. RKM treats it as one application.

Customer would typically stage the update of the application rather than trying to distribute to all at one time. That means for some timeframe there could be multiple versions of the application running for some time period.

Resolution

There can be multiple active certificates for a single application instance.
You can have more than one certificates per Identity. More than one Client (as defined by the Client Tab) can point to the same Identity.

Legacy Article IDa52998

Attachments

    Outcomes