Configuring Cognos Analytics components to use another certificate authority

You can configure IBM® Cognos® Analytics to use a certificate from an external certificate authority (CA) to establish the root of trust in the security infrastructure.

By default, IBM Cognos Analytics components use their own certificate CA for this purpose.

Use the following process to configure Cognos Analytics to use another certificate authority:

  1. Delete the existing keystore
  2. Create the certificate signing request (CSR) files
  3. Import the certificate authority (CA) certificates
  4. Enable the external certificate authority (CA)

Changing the CA affects other installed components of Cognos Analytics, including Framework Manager, Planning Analytics, and more. The process of configuring an external certificate authority for these components is the same as for Cognos Analytics.

Important: The process of configuring an external certificate authority (CA) that is documented here doesn’t apply to IBM Cognos PowerPlay. For this product, you must use the CA process for the IBM Cognos Business Intelligence product, version 10.2.2. For more information, see the IBM Cognos Business Intelligence PowerPlay Installation and Configuration Guide, version 10.2.2.