This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

RSA SecurID® Access Discussions

Browse the SecurID Access discussion board to get product help and collaborate with other users of SecurID Access.
HongyuZhang
Employee
Employee
‎2020-10-15 02:14 PM

RSA AM console certificate replacement

Hi all,

 

I am trying to replace the console certificate on my RSA AM 8.4. The RSA AM console has been using its default self-signed cert.

 

I have got the new certificate signed by my trusted CA and while importing, it is always complaining "This certificate is already imported.". 

 

I am guessing this is due to the fact that the default self-signed cert and the new certificate both have the same subject name (hostname for the RSA AM).

 

Am I doing anything wrong? Is there a way to get around this? 

 

Thanks,

Hongyu

Labels (1)
0 Likes
Reply
2 Replies
HongyuZhang
Employee
Employee
‎2020-10-15 02:14 PM

By the way, I am following the instructions here: https://community.rsa.com/docs/DOC-77300 

Reply
JayGuillette
Valued Contributor Valued Contributor
Valued Contributor
‎2020-10-15 06:12 PM

I think your replacement Cert is likely a bundle, it includes the Root CA, maybe an intermediary CA and the replacement console server cert,

SalesForceCert_Path_Chain.png

and I would guess that previously either the Root CA or Intermediary was imported by itself,

Cert_Path_Chain_RootCA_only.png

so that is likely the cause of "This Certificate is already imported"

OC-Already_Imported.png

 

What you could do is look at your Console Certs listed in the Ops Console to see if you can find the Root CA or Intermediary CA or both already imported.  

 

If you are familiar with manipulating Cert Bundles, you can select just the server replacement cert from the Certificate Path Tab, the [View Certificate] to look at that as a single Cert.  Go to [Details] Tab and Save to file.  Call support for help, or have a look at 

https://community.rsa.com/docs/DOC-76462 

Reply
© 2021 RSA Security LLC or its affiliates.
All rights reserved.