Ops manager reports .security_configuration.trusted_certificates[N] is expiring
search cancel

Ops manager reports .security_configuration.trusted_certificates[N] is expiring

book

Article ID: 392754

calendar_today

Updated On:

Products

Operations Manager

Issue/Introduction

On Ops Manager UI you noticed something like

 
security_configuration.trusted_certificates[N]  are certificates that are configured on your Ops Manager -> Security -> Trusted Certificates
 
 
The trusted certificates accepts multiple certificates hence we can see an index .security_configuration.trusted_certificates[N] . N signifies index of the array which starts from 0. 
On our example .security_configuration.trusted_certificates[3] this would be the 4th certificate from the top of the text field.
 

Resolution

To rotate expiring .security_configuration.trusted_certificates[N]

  1. Locate the certificate on Ops Manager:Bosh Director Tile -> Security -> Trusted Certificates text field. You might need to decode each certificate in the text box, you can use tools such as SSLHopper  or you can save each certificate into a file and use openssl x509 -in certificate.crt -text -noout
  2. Once located you can copy a new value for the leaf certificate into the text field.
  3. Click Save for each new leaf certificates value you add.
  4. Return to Tanzu Operations Manager Installation Dashboard.
  5. Click Review Pending Changes.
  6. Click Apply Changes.

This procedure can also be found at our docs.

Powered by Wolken Software