|Applies To||RSA Product Set: Security Analytics, NetWitness Logs and Packets|
RSA Product/Service Type: Log Collector, Security Analytics Server
RSA Version/Condition: 10.4.x, 10.5.x, 10.6.x
|Issue||While working on getting some Bluecoat devices to use FTPS you may discover that the original certificates issued on the Log Collector will not work.|
|Resolution||Use the Puppet CA (SA Server) to create a new certificate using the IP address as the CN.|
Then have the puppet CA certificate added to the Bluecoat trusted certificate store.
You can then configure the Bluecoat to send the logs to the IP address that matches the certificate along with the proper user credentials.
|Notes||A blog post was written on the RSA NetWitness Suite community within RSA Link that explains further how to resolve this issue.|