Configure self signed certificates for TDM Portal shows root certificate not trusted

book

Article ID: 211644

calendar_today

Updated On:

Products

CA Test Data Manager (Data Finder / Grid Tools)

Issue/Introduction

Following the documentation for implementing self signed certificates results in an error: root certificate not trusted.
Documentation to create and configure the certificate:
https://techdocs.broadcom.com/us/en/ca-enterprise-software/devops/test-data-management/4-9/installing/manage-certificates/create-and-implement-a-self-signed-certificate.html

Environment

Release : 4.9.1

Component : CA Test Data Manager - TDM Web Portal

Resolution

The following command is used in the documentation:
keytool -genkey -alias "aliasname" -keyalg RSA -keystore "keystore_path\.keystore"
There are some additional options that can resolve the issue.

Check the output of the following commands to confirm the actual hostname: 
hostname
ipconfig /all

Add the -ext san option for additional hostnames:
"C:\Program Files\CA\CA Test Data Manager Portal\jre\bin\keytool" -genkey -alias "Test Data Manager New" -keyalg RSA -keystore "C:\Program Files\CA\CA Test Data Manager Portal\conf\.keystore" -validity 3650 -ext "san=dns:<actual hostname>,dns:localhost"

Also as a response to Enter your first and last name, enter the actual hostname.
Then at the end, CN should show the actual hostname: CN=<hostname>

If needed follow the instructions as listed here under troubleshooting: 
https://techdocs.broadcom.com/us/en/ca-enterprise-software/devops/test-data-management/4-9/installing/manage-certificates/install-the-predefined-certificate.html