By default Security Analytics server uses a web server certificate generated by Security Analytics for HTTPS connection. Security Analytics also allows you to configure custom web server certificate to be used as Security Analytics server certificate . You can configure custom web server certificate even if PKI is not enabled.
Supported Certificate Formats
The following certificate formats are supported. You must select the format that meets your requirement:
- For server certificate with its private key:
- pkcs12 or .p12
Note: The .pfx, .p12, .jks are containers that can contain one or more private keys and its chains or certificates.
Import SA Server Certificate with its Private Key
To import SA server certificate with its private key
- In the Security Analytics menu, select Administration > Security.
The Security view is displayed with the Users tab open.
- Click the PKI Settings tab.
- In the Server Certificates section, click .
The Import Server Certificates dialog is displayed.
- In the Keystore/Certificate File field, click Browse and select the certificate store.
- In the Password field, enter the password of the certificate store.
- (Optional) If Public Key Infrastructure (PKI) is enabled and you want to import an issuer certificate as the Trusted CAs, select the Import CAs checkbox.
- Click Save.
The Security Analytics server certificate with its private key is successfully added to Security Analytics.
Note: You can import multiple server certificates with its private keys.
Note: The Import Server Certificates dialog may not close on some browsers, however, the import will be successfully. To view the imported certificate, refresh the page.
- To specify a default server certificate, select a certificate and click Use as Server Certificate.
The selected server certificate is highlighted in red.
Restart Security Analytics server for changes to take effect.