|Applies To||Sentry CA 3.7|
Keon Certificate Authority
|Issue||Important information on upgrading to Sentry CA 3.7 from a previous version.|
This applies to existing Sentry CA 3.5 and 3.6 installations.
|Resolution||Prior to performing an upgrade to Sentry CA 3.7, according to the Sentry Upgrader Guide, please make note of the following:|
1) When installing Sentry CA 3.7, the Common Name for the Root CA and the
Administrative CA must be different from the existing installation. This is
because the databases will be merged and two CAs within one installation
of Sentry CA may not have the same Common Name.
2) The database merge will combine the original ACL rules with the new ACL
rules. This generally means access to /ca/ will be open to certificates issued
by the original Administrative CA and the 3.7 Administrative CA. If desired, the
ACL rule can be changed to allow access only to the certificates issued by the
original Administrative CA. At this point, the 3.7 Administrative CA is no longer
used and can be suspended.
It is recommended to contact RSA Support for assistance in planning/deploying an upgraded CA installation.
|Legacy Article ID||a3600|