The certificate is going to expire. New certificate has been generated.

How to renew Certificate in VIP Authentication Hub deployment?

VIP Authentication Hub 3.3.x

Follow below steps to renew the Certificate   

1. Copy your new server.key and the server certificate file (which contains the intermediate and root CA certificates) to the cluster node or terminal where you will run the kubectl command.

    [root@### newcert2026]# pwd
    /root/newcert2026
    [root@### newcert2026]# ls
    server2026.key  server-add_chain2026.crt

2. Set the KEYFILE and CERTFILE environment variables

    [root@### newcert2026]# export KEYFILE=/root/newcert2026/server2026.key
    [root@### newcert2026]# export CERTFILE=/root/newcert2026/server-add_chain2026.crt
    [root@### newcert2026]# env | grep FILE
    KEYFILE=/root/newcert2026/server2026.key
    CERTFILE=/root/newcert2026/server-add_chain2026.crt

3. Find the TLS secret in the result list by running the command below

    kubectl get secret -n <namespace>

    Notes: the Type will be kubernetes.io/tls

4. Backup

    For example, the command below will back up the existing ssp-general-tls TLS secret in the ssp namespace to a YAML file.

    kubectl get secret ssp-general-tls -n ssp -o yaml > backup-ssp-general-tls.yaml

5. Renew the certificate by running the command below

    kubectl create secret tls ssp-general-tls -n ssp \
      --cert="${CERTFILE}" \
      --key="${KEYFILE}" \
      --dry-run=client -o yaml | kubectl apply -f -

6. Repeat the process for the other TLS secrets in all the other namespaces.