Release : 4.x , 5.x

Component : API PORTAL

SSL Certificates for PSSG, Ingress, and so on are expired in 3 years after their generation by the portal.sh script.

They can be regenerated by removing all files in the certs directory and restarting the portal with the portal.sh script.

The new certificates are valid for another 3 years.

Steps on the portal:

1. Remove a previously running Portal stack

# sudo docker stack rm portal

2. Ensure the Portal stack has enough time to shut down all containers

# sudo docker ps

3. Backup then Remove the <portal_home>certs  folder 

# sudo tar -cvf certs.tar certs

# sudo rm certs/*

restart portal

# sudo ./portal.sh

Watch portal stack for all containers to start 

# sudo watch docker service ls 

To update the certificate on the proxy gateway's see :

Updating Portal integration certificates on API Gateway

https://techdocs.broadcom.com/us/en/ca-enterprise-software/layer7-api-management/api-developer-portal/4-5/set-up-and-maintenance/create-and-sign-certificates-for-production/certificate-management-for-gateway-integration.html

Before making any changes in working server please keep a complete snapshot of the server.

Please don't regenerate certificates and private keys when the portal.sh is used for updating the license only.