Sunday, April 16, 2006

 

Simple Mode Cert Regeneration (Identity)

When simple mode certificates are going to expire, they need to be regenerated so the component(s) that have the old certificates may still communicate with other COREid components. The method for regenerating certificates varies between the COREid Access and Identity Systems. The Identity Server and WebPass (and Access Manager too) have a utility called gencert. The gencert utility is located in:

<coreid_install_dir>\oblix\tools\gencert

to use the tool to regenerate certificates, execute gencert as follows:

gencert.exe "c:\Program Files\COREid\identity"
OR
gencert.exe "c:\Program Files\COREid\WebComponent\identity"

Restart the COREid component to get it to bind to TCP/IP port with the new certificate.

See also:
Certificate Expiration Dates #2

Comments:
I think that it is "AND" not "OR" as when we updated the certificates at the identity server only the web pass still couldn't connect to the identity server as it had the expired certificates so we copied the certificated generated at the identity server to the web pass and it worked
 
Post a Comment



<< Home

This page is powered by Blogger. Isn't yours?