Unable to delete key from Gateway

book

Article ID: 76790

calendar_today

Updated On:

Products

CA API Gateway (Layer 7) SA94 to API SECURITY STARTER PACK-7 CA Rapid App Security MOBILE API GATEWAY CA Mobile - API Gateway CA API Gateway

Issue/Introduction

Unable to delete key: Key 'XYZ' is in use by the connector for current admin connection.

Cause

As the private key is assigned to listening ports

Environment

All versions of Gateway

Resolution

1. create a new private key, for example: ssl9443
2. task -> manage listen ports -> open properties of port 9443, make following changes,
a) on Basic Settings tab, ensure "Policy Manager Access" is checked
b) on SSL/TLS Settings tab, change the "Server Private Key" to "'ssl9443' in sofrware DB"
c) click 'OK' to save changes.
3. login policy manager using port 9443 --> on login window, in "Gateway:" field, input:
<gatewayhostname>:9443
4. navigate to Manage Private Keys task, now you can delete keys. NOTE that you can delete "ssl" even it's marked as default ssl key, as your current policy manager connection is using key 'ssl9443'. So be careful don't delete the key you want to keep.

As a safety measure have DB backup and snapshot in place.