Release : 4.x , 5.x

Component : API PORTAL

SSL Certificates for PSSG, Ingress, and so on are expired in 3 years after their generation by the portal.sh script.

They can be regenerated by removing all files in the certs directory and restarting the portal with the portal.sh script.

The new certificates are valid for another 3 years.

Steps on the portal:

1. Remove a previously running Portal stack

# sudo docker stack rm portal

2. Ensure the Portal stack has enough time to shut down all containers

# sudo docker ps

3. Backup then Remove the <portal_home>certs  folder 

# sudo tar -cvf certs.tar certs

# sudo rm certs/*

4. restart portal

# sudo ./portal.sh

5. Watch portal stack for all containers to start 

# sudo watch docker service ls 

Steps on the Gateway:

To update the Portal integration certificate on the proxy gateway's see the documentation:

Certificate Management for Gateway Integration: Renew an Expired Certificate

Note for the "Renew an Expired Certificate":

• In the step 7 of Retrieve via SSL Connection, confirm the hosts name by Cluster-Wide Properties for accuracy.
• In the step 8 of Import from Known Trusted Certificate, this is not required. Skip this.
• In the step 9, after the acceptance, follow the additional step below.

In the View Certificate Details view, paste the Certificate Name you copied.

Before making any changes in working server please keep a complete snapshot of the server.

[for version 4.x only] Please don't regenerate certificates and private keys when the portal.sh is used for updating the license only.