Renewing expired SSL certificates for Clarity app and report servers

book

Article ID: 197761

calendar_today

Updated On:

Products

Clarity PPM On Premise

Issue/Introduction

  • Our Clarity SSL certificates are expired in all the environments.
  • We would like to know the process to redeploy the certificates after renewal.
  • Do we need to import the renewed certificates in app server Java / JVM trust store?

Environment

Release : All Supported Releases

Component : CA PPM SECURITY INTEGRATION

Resolution

See the following documentation links:

  1. Configure Secure Sockets Layer (SSL) on Apache Tomcat
  2. KB: 9783 - Clarity Configuring HTTPS
  3. Jaspersoft Reporting: https://community.jaspersoft.com/documentation/jasperreports-server-ultimate-guide/v561/using-ssl-web-server
  4. If you are using GEL processes: Using SSL with GEL
  5. As per Configure General System Settings, you only need to import an SSL Certificate into the Java TrustStore only if you are:
    1. Using a proxy to send telemetry data to the CA Technologies
      • AND
    2. Using a self-signed SSL Certificate on the proxy. 
 

Additional Information

See KB: 141061 for tips on how to optimize use of Self Service for Clarity