[Deepthi]

2 years, 8 months ago #3592

We are currently on cheetah sp2 patch1.our ignio ui certifcate expired.Earlier it was wildcard certificate so single certificate was applciable for all servers.Now customer provided only one domain level certificate for the server on ui link and rest all self signed certificate was generated.we followed the below links for placing the self signed certificates .but still we are facing the issue.
https://digitate.atlassian.net/wiki/spaces/ID/pages/1912078486/Creating+Self+Signed+Certificate-SP6
https://digitate.atlassian.net/wiki/spaces/ID/pages/2178810742/SSL+Automation+SP7
https://digitate.atlassian.net/wiki/spaces/ID/pages/1542817516/HaProxy

after performing the haproxy step ,haproxy did not come up and we were asked to place the certificates of core,analytics and rabbitmq on the haproxy server also vice versa.Even after that facing same issue.

Now we have been asked to perform the steps in below link:
https://digitate.atlassian.net/wiki/spaces/ID/pages/1539966582/ignio+Components+and+User+Interface

could you please tell us what we are doing wrong or the correct method to place the certificate on all the components and make them work correctly with proper certificates.We are stuck with this isssue since a month and we have been [erfroming various steps still the issue is not resovled.

[Gregory Williams]

2 years, 7 months ago #3599

Up

0

Down

::

For HaProxy, you must create a combined certificate from the client certificate. The new cert will be both the cert and the password for it on 1 pem file.