ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.
Disable "Require Client Certificate to Access Web Interface" on Security Analytics via the CLI
Article ID: 169070
Updated On:
Products
Security Analytics
Issue/Introduction
You may enable the Require Client Certificate to Access Web Interface via the WebUI though Settings > Security > under Client PKI settings > Checked Require Client Certificate to Access Web Interface.
When you enable this feature, all web browsers that do not have a valid certificate from the Issuing Authority will be prevented from accessing the web interface. You will not be able to disable this feature through the WebUI unless you have a valid certificate.
Resolution
At the CLI, you can disable Require Client Certificate to Access Web Interface by editing the file /etc/sysconfig/httpd and then restarting the service.
- Edit httpd and set the export_SSL_ lines to "" (Two double quotes) and save the file. After editing the file, the /etc/sysconfig/httpd with export SSL_ should look like:
export SSL_OPTIONS=""
export SSL_VERIFY_DEPTH=""
export SSL_VERIFY_REQUIRE=""
export SSLCA=""
export SSL_VERIFY_DEPTH=""
export SSL_VERIFY_REQUIRE=""
export SSLCA=""
export SSL_CRL_PATH=""
- Restart the HTTP service.
service httpd restart
Feedback
Yes
No
Powered by
