Configuring Cognos Analytics to use another certificate authority (CA) certificate

You can configure IBM® Cognos® Analytics to use a certificate from an external certificate authority (CA) to establish the root of trust in the security infrastructure.

By default, Cognos Analytics uses its own CA for this purpose.

Use the following process to configure Cognos Analytics to use another certificate authority:

  1. Delete the existing keystore
  2. Create the certificate signing request (CSR) files
  3. Import the certificate authority (CA) certificates
  4. Enable the external certificate authority (CA) certificate

The configuration steps must be performed on each computer where the following Cognos Analytics components are installed: Content Manager, the Application Tier Components, the gateway, and the client components such as Framework Manager, and other components if you use them.

Important: The process of configuring an external certificate authority (CA) that is documented here doesn’t apply to IBM Cognos PowerPlay. For this product, you must use the CA process for the IBM Cognos Business Intelligence product, version 10.2.2. For more information, see the IBM Cognos Business Intelligence PowerPlay Installation and Configuration Guide, version 10.2.2.