Updating a System Web Certificate
A web certificate in CBH is a Secure Sockets Layer (SSL) server digital certificate issued by a trusted root certificate authority (CA) and used to verify the website identity and security of the CBH system.
A secure self-issued certificate is configured for each CBH system by default, but this certificate takes effect only within certain scope and period. You can replace it with your own certificate.
This topic describes how to update the system certificate if it expires or fails a security check.
If the browser still says the system is insecure after you update an SSL certificate, fix the issue by referring to Why Does the Browser Still Consider the Website Insecure While the Website Has an SSL Certificate Deployed?
Prerequisites
- You have purchased and downloaded an SSL certificate.
- The domain name the uploaded certificate is used for has been resolved to the EIP bound to the CBH instance. For details, see Adding an A Record Set.
- You have the management permissions for the System module.
Constraints
- Currently, the CBH system supports only the Java Keystore certificate file of Tomcat, that is, the certificate file in .jks.
- A certificate file cannot exceed 20 KB and must contain a certificate password.
When you upload an SSL certificate, provide its password for verification, or the upload will fail.
Procedure
- Log in to the CBH system.
- Choose System > Sysconfig > Security.
- In the Web Certificate configuration area, click Edit.
- Upload the certificate file downloaded in your computer.
- After the certificate file is uploaded, enter the Keystore password to verify the certificate.
- Click OK. You can then check the web certificate configuration of the current system user on the Security tab.
- Restart the CBH system for the updated certificate to take effect.
You can use either of the following methods to restart the CBH system:
- Restart the instance on the management console. For details, see Restarting a CBH Instance.
- Use the system tool in the CBH system to restart the system. For details, see Managing System Tools.
Figure 1 System web certificate information
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
