SiteMinder Management Console and Root CA Cert Requirements

book

Article ID: 131787

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Policy Server Management Console connection tests for the policy store fail unless we import the policy store SSL cert into the cert8.db.  We were expecting to only need to import the certificate Authority (CA) cert for this to work.

Cause

The CA cert was imported into the cert8.db with a P in the first position instead of C.  C is required in the first position for the cert to be considered a trusted CA cert.

Environment

Release:
Component: SMPLC

Resolution

CA certs must be imported with 'C" in the first position to be used as trusted CA cert.