Article Number
000011775
Applies To
RSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.x
Issue
The default Web Tier certificate was replaced, but the old default certificate is presented by the Web Tier.
The replacement certificate shows as active, and the default shows as inactive, but the default is the certificate that is presented by the Web Tier.
Resolution
- In the Operations Console, click Deployment Configuration > Web-Tier Deployments > Manage Existing.
- On the Web Tiers page, in the Status column, click Update for the web tier that you want to update. If you do NOT see Update, switch back to the default certificate, and then to the new certificate:
- In the Operations Console, click Deployment Configuration > Certificates > Virtual Host Certificate Management.
- On the Virtual Host Certificate Management page, under Alias, click the name of the inactive Original Default certificate.
- Click Activate.
- On the Activate Certificate Confirmation page, review the details, and select Yes, make this the active default certificate.
- Click Activate Certificate.
Important: Do NOT click Update yet.
- Click Deployment Configuration > Certificates > Virtual Host Certificate Management.
- In the Virtual Host Certificate Management page, under Alias, click the name of the new certificate.
- Click Activate.
- On the Activate Certificate Confirmation page, review the details, and select Yes, make this the active default certificate.
- Click Activate Certificate.
- In the Operations Console, click Deployment Configuration > Web-Tier Deployments > Manage Existing.
- On the Web Tiers page, in the Status column, click Update for the web tier that you want to update.
- When the update is complete, which may take up to 20 minutes, the Status column for the updated web tier displays as Online.
