Generate CSR to generate a certificate from a
custom or third-party certificate authority.
Download the Certificate Signing Request to your PC and use this
CSR to obtain the Public certificate and primary certificate from the
Log in to OS platform again and navigate to
Upload Certificate/Certificate chain. The
Upload Certificate dialog box opens.
To upload the public certificate, select
tomcat-trust from certificate name list.
Select the file to upload by performing one of the following
Upload File text box, enter the path to
Browse button and navigate to the file;
Upload File button.
Upload Certificate/Certificate chain.
To upload primary certificate, select tomcat from certificate name
Enter Root certificate name. This is a .pem file that is generated
when the root/public certificate was installed. To view this file Navigate to
certificate management > Click
Find. In the certificate list .pem file name
will be listed against tomcat-trust.
Follow step 10.
After successfully uploading the certificate, navigate to
Find to open the list of certificates.
Click on pem and der links against tomcat and tomcat-trust to see
Certificate File Data.
Restart the server settings using the following commands:
utils service restart cisco tomcat
utils service restart Intelligence Center Reporting
To upload a custom
certificate with alternate hostname, set the alternate hostname using the CLI
command set web-security. Configure the alternate hostname and use the
procedure above to generate Certificate Signing Request (CSR) and to upload the
certificates. You can access Unified Intelligence Center by using the alternate
hostname as well.
To avoid the certificate exception warning, you must access
the servers using the Fully qualified domain name (FQDN) name.
Unified Intelligence Center CSR certificates are signed with
sha1WithRSAEncryption using a 2048-bit RSA public key.