Activate a New SSL Console CertificateActivate a New SSL Console Certificate

When you deploy an instance of Authentication Manager, communication between the browser, and the Security Console, Operations Console, and Self-Service Console is secured by a long-lived secure socket layer (SSL) certificate. If you replace the console certificate, and in turn, import a new certificate, you must activate the certificate to make it available for use.

To activate a secure socket layer (SSL) certificate, the certificate must have a subject field that contains a common name (CN) with a value equal to the fully qualified hostname (FQHN) of the instance you are administering.

Before you begin

• You must be a Super Admin and an Operations Console administrator.

• Import the SSL certificate that you want to activate. See Import a Console Certificate.

Procedure

1. In the Operations Console, click Deployment Configuration > Certificates > Console Certificate Management.

2. In the Console Certificate Management page, under Alias, click the name of the new SSL certificate.

3. From the context menu, select Activate.

4. In the Activate Certificate Confirmation page, review the Certificate Details to ensure that this is the certificate that you want to activate.

5. Select Yes, make this the active certificate, and click Activate Certificate.

   After the certificate is activated, the appliance services automatically restart to complete the activation process. This can take several minutes.

6. After all the services start, log on to the Operations Console.

7. In the Operations Console, click Deployment Configuration > Certificates > Console Certificate Management, and make sure that the new certificate status is Active.