search cancel

Certificate not showing in Admin UI but stored in CDS

book

Article ID: 201592

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Agents (SiteMinder) CA Single Sign On Federation (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) SITEMINDER

Issue/Introduction

 

We're running an AdminUI and after we have added a new Certificate,
the AdminUI doesn't show it afterwards in the AdminUI in the drop-down
in "Signature an Encryption" / "Verification Certificate Alias" or
"Secondary Verification Certificate Alias" of the Partnership.

How can we fix that ?

 

Environment

 

Policy Server 12.8SP3 on RedHat 6

AdminUI 12.8SP3 on RedHat 6

 

Cause

 

The certificate has alias "mypartnershipcertificate" and it has been
added as "CertificateAuthorityEntry" instead of "CertificateEntry" :

smkeytool.sh -listCerts > certs.txt

certs.txt :

  Alias Name: mypartnershipcertificate
  Type: CertificateAuthorityEntry
  Subject: CN=mycert,O=myCompany,L=myTown,ST=myState,C=myCountry
  Issuer: CN=mCACertificate,O=mySignCompany,C=myCountry
  Serial Number: 6644DaWWwSSASD44454ad541113
  Valid from: Wed Aug 26 12:36:12 CEST 2020  until: Fri Nov 25 13:00:00 CET 2022

 

Resolution

 

So you have to delete the certificate "mypartnershipcertificate" and
import it from the "Trusted Certificates and Private Keys" menu :

- Delete the certificate "mypartnershipcertificate" from the "Certificate
  Authorities";
- Add "mypartnershipcertificate" certificate by the "Trusted Certificates
  and Private Keys" menu;
- Go to the Partnership and see it in the drop down list in "Signature
  an Encryption" / "Verification Certificate Alias" or "Secondary
  Verification Certificate Alias";