000018802 - Important information on upgrading to Sentry CA 3.7 from a previous version.

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000018802
Applies ToSentry CA 3.7
Keon Certificate Authority
TechNote 0206
IssueImportant information on upgrading to Sentry CA 3.7 from a previous version.
This applies to existing Sentry CA 3.5 and 3.6 installations.
ResolutionPrior to performing an upgrade to Sentry CA 3.7, according to the Sentry Upgrader Guide, please make note of the following:

1) When installing Sentry CA 3.7, the Common Name for the Root CA and the
   Administrative CA must be different from the existing installation. This is
   because the databases will be merged and two CAs within one installation
   of Sentry CA may not have the same Common Name.

2) The database merge will combine the original ACL rules with the new ACL
   rules. This generally means access to /ca/ will be open to certificates issued
   by the original Administrative CA and the 3.7 Administrative CA. If desired, the
   ACL rule can be changed to allow access only to the certificates issued by the
   original Administrative CA. At this point, the 3.7 Administrative CA is no longer
   used and can be suspended.

It is recommended to contact RSA Support for assistance in planning/deploying an upgraded CA installation.
Legacy Article IDa3600

Attachments

    Outcomes