Renewing TLS certificates on application servers

To renew a TLS certificate for IBM OpenPages®, create a new certificate signing request, submit it to a Certification Authority, and import the signed server certificate.

Procedure

  1. Log on to cluster administrator server as a user with administrative privileges.
  2. Create the certificate request.
    For more information, see Generating a Certificate Signing Request file.
  3. Submit the request to the Certification Authority (CA).
    1. Submit the Certificate Signing Request (CSR) to your Certification Authority (CA) to renew the certificate. Follow the instructions provided by your CA on how to submit the CSR.
    2. Download the approved server and CA certificates. Make sure the certificates are named to distinguish the server from the CA certificate.
  4. Import the certificate.
    Import the renewed server certificate into each application server. For more information, see Importing signed CA certificates.