This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
NetWitness Discussions

v11 - Replace Self-Signed Certificate

Anonymous
Not applicable

‎2019-03-20 12:22 AM

Does anyone know if there are any instructions for replacing the self-signed certificate when accessing the admin server on v11.

The only document I found was relating to v9.8, is that still valid?

0 Likes
3 REPLIES 3

NaushadKasu1
Trusted Contributor Trusted Contributor
Trusted Contributor

‎2019-03-20 12:29 AM

Jeremy,

 

Look at my comment in this thread:

 

https://community.rsa.com/message/925212?commentID=925212&et=watches.email.thread#comment-925212

 

Sent from my iPhone

0 Likes

Anonymous
Not applicable

‎2019-03-20 01:49 AM

There is documentation at the end of the Security Configuration guide available here (in Appendix A): Security Configuration Guide for Version 11.2 

 

From the field – it does work:

 

We have created a self-signed certificate and a key  using  the below,

 

openssl req  -nodes -new -x509  -keyout server.key -out server.cert

 

then updated /etc/nginx/conf.d/nginx.conf with the new key and pem in lines:

 

ssl_certificate      /etc/pki/nw/web/web-server-cert.pem;

ssl_certificate_key  /etc/pki/nw/web/web-server-key.pem;

 

then restarted the nginx.

 

UI has started with the new cert

 

ssl.png

0 Likes

Anonymous
Not applicable
In response to Anonymous

‎2019-03-20 12:49 PM

Thank for confirming Chris.  Yes, this info is within the Security Guide: https://community.rsa.com/docs/DOC-96728 

0 Likes
© 2022 RSA Security LLC or its affiliates. All rights reserved.