AnsweredAssumed Answered

RSA AM console certificate replacement

Question asked by Hongyu Zhang

on Oct 15, 2020
Latest reply on Oct 15, 2020 by Jay Guillette

Like • Show 0 Likes0
Comment • 2

Hi all,

I am trying to replace the console certificate on my RSA AM 8.4. The RSA AM console has been using its default self-signed cert.

I have got the new certificate signed by my trusted CA and while importing, it is always complaining "This certificate is already imported.".

I am guessing this is due to the fact that the default self-signed cert and the new certificate both have the same subject name (hostname for the RSA AM).

Am I doing anything wrong? Is there a way to get around this?

Thanks,

Hongyu

No one else has this question

Outcomes

2 Replies

Hongyu Zhang Oct 15, 2020 2:14 PM
Mark Correct
Correct Answer
By the way, I am following the instructions here: Replacing the Console Certificate
Like • Show 1 Like1
Actions
Jay Guillette Oct 15, 2020 6:12 PM
Mark Correct
Correct Answer
I think your replacement Cert is likely a bundle, it includes the Root CA, maybe an intermediary CA and the replacement console server cert,
and I would guess that previously either the Root CA or Intermediary was imported by itself,
so that is likely the cause of "This Certificate is already imported"

What you could do is look at your Console Certs listed in the Ops Console to see if you can find the Root CA or Intermediary CA or both already imported.

If you are familiar with manipulating Cert Bundles, you can select just the server replacement cert from the Certificate Path Tab, the [View Certificate] to look at that as a single Cert. Go to [Details] Tab and Save to file. Call support for help, or have a look at
000035126 - RSA Authentication Manager 8.x import of replacement certificate fails with the error This certificate is already imported
1 person found this helpful
Like • Show 0 Likes0
Actions

RSA AM console certificate replacement

Outcomes

Related Content

Recommended Content