Click the link above to access ADSM.ORG Acceptable Use Policy and forum rules which should be observed when using this website. Violators may be banned from this website. This notice will disappear after you have made at least 3 posts.
A short description howto prevent from certificate warning when opening TSM OC
Hi David,Hi Skentzle,
Thanks for the detailed write up. Can you post instructions on how to update or replace an expired SSL self-signed cert for TSM OC?
Thanks!
Hi David,Hi Sebastian,
Thanks for replying to your 4 year old post! Anyways, I figured it out and its actually a lot easier. Here are the steps I took to create a new self-signed cert for the TSM OC HTTPS server:
ikeyman
- If applicable, start VNC Server and assign the VNC password
- Log into VNC server (this is for ikeyman)
- Navigate to /opt/tivoli/tsm/ui/jre/bin
- Invoke the IBM Key management tool
Click on “Export/Import…”
- Open the key database - It will prompt you a password. This is the instance password when OC was first installed.
- Create a backup of the existing key database
Create a directory 'backup' under
installation_dir/ui/Liberty/usr/servers/guiServer
Export the backup kdb there
- Delete the existing ‘default’ personal certificate
- Create a new self signed certificate with the exact same attributes as the previous personal certificate. Use the same CN, O, OU, Signature Algorithm, Key Size, Label.... etc
- Once complete, restart the TSM Operations Center service