000033448 - How to install enterprise certificate for RSA SecOps 1.3 SSL communication between UCF and SIEM tool

Document created by RSA Customer Support Employee on Jul 6, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000033448
Applies ToRSA Product Set: Security Management
RSA Product/Service Type: SecOps
RSA Version/Condition: 1.3
Platform: Windows
Product Name: RSA-0012000
Product Description: Archer Platform
IssueYou want to install enterprise certificate rather than the self-signed certificate for TLS / SSL traffic on port 1515.
ResolutionFile required:
  1. Create a CA signed certificate with the resolvable hostname. The certificate would need to be in .p12 format and have an export password on it.
Installation instruction:
  1. Stop the RSA SecOps watchdog service and the RSA Unified Collector Framework service.
  2. Copy the .p12 file on the <ucf install dir>\config folder
  3. Modify the collector-config.properties file located on the <ucf install dir>\config folder with the following
    1. The path for the keystore under the parameter ³keystoreFileLocation². Change from the default keystore.p12 file to the .p12 file created by the certificate team.
    2. The export password under the parameter keystorePassword. Change from [LB] to whatever password being assigned as the export password for the certificate.
  4. Restart RSA SecOps watchdog service and the RSA Unified Collector Framework service
  5. Open browser and go to https://<FQDN of UCF>:1515 and observe the certificate being installed

Attachments

    Outcomes