changes.mady.by.user Niko Puruskainen
Saved on Sep 02, 2022
changes.mady.by.user Andrew Skinner
Saved on Sep 06, 2022
Using the Java keytool.exe, you can follow the steps below to install a new SSL certificate on your BMC server.
Run commands on Command Prompt which is opened with administrator privileges
Step 1: Stop the BMC service.
Step 2: Create the new keystore/keypair.
(Optional - if "subject alternative name (SAN)" needs to be used):
Step 3: Create a new CSR, Certificate Signing Request, for your new keystore/keypair.
Step 4: Send the CSR to a CA (Certificate Authority) to create the new certificate, this can be either an internal CA if one is available or a trusted third party CA.
Step 5: Import the Root CA cert, then the Intermediate CA cert.
Step 5: Import CA-signed certificate and apply the same to the keypair.
Step 6: Update the "keystoreFile" and "keystorePass" values in the server.xml file located under "C:\Program Files\Blancco\Blancco Management Console\apache-tomcat\conf" to reflect any changes associated with key/cert.
Step 7: Start the BMC service.