Click the + under Server Certificates and add a web server certificate created as a .p12
Select the server certificate by checking the checkbox listed next to the .p12
Click on "Use as Server Certificate"
The Security Analytics web interface will no longer be available, jettysrv will not start and you will see in /opt/rsa/jetty9/logs/stderrout.log:
pki.p12 (No such file or directory)
NW Server expects that the Trusted CA file(s) be uploaded before applying a Server certificate. If the Trusted CA file(s) have not been uploaded, jettysrv will be looking for the Trusted CA file(s) at /opt/rsa/carlos/truststore-pki.p12.
The issue is fixed in version 10.6.2.1
If you have not applied the server certificate for PKI authentication then, before doing so add the Trusted CA file(s) for the server certificate(s):
Go to SA server Administration > Security
Click on the PKI Settings tab
Click the + under Trusted CAs and add the CA trusted CA certificate file(s)
If you have already applied the server certificate for PKI authentifcation and jettysrv does not start:
SSH into the Security Analytics server
Copy the Server Certificate to truststore-pki.p12 by running: