Using client certificate from gateway to access Policy Manager Steps
1. Create a private key
- Access policy manager with default ID password
- Task -> Certificate, Keys and Secrets -> Manager Private Keys
- Click Create Alias pmtest Subject DN: pmtest
2. Create User in the default Identity Provider using the Subject DN from step 1
- Click Identity Providers
- Right click Internal Identity Provider -> Create User
- User name: pmtest (MUST BE THE SAME AS CERT)
3, Define roles and import certificate for the new admin
- Right click Internal Identity Provider -> Search Identity Provider
- Search for the new user pmtest when found double click user
- Click Roles tab -> Add, check Administrator, click Add Click
- Certificate tab -> Click Import
- Since the certificate was created on GW click Import from “Private Key’s Certificate Chain”
- From the Drop down select the new key ‘pmtest’ in Software DB
4. Export the private key for import into Policy manager
- Task -> Certificate, Keys and Secrets -> Manager Private Keys
- Select the new key Alias pstest -> Properties
- Click ‘Export Key” - provide password for export
- Provide a location for the p12 certificate
5. Import key into Policy manager
- From Policy Manager go to Task -> Certificate, Keys and Secrets -> Manage Certificates
- Check “Client Certificate” -> Click Manage
- Certificate List - Import certificate… click Import
- Logoff from Policy Manager
6. Login the Policy Manager with the new user created (pmtest) Check “Client Certificate” -> Click Manage From the Certificate List
- select and Import certificate (pmtest)… click Import
- Navigate to the exported key and import Provide the password used in step 4