indranil2121
New Member.
315 views

Impact on access manager for certificate renewing in IDM

Organization root tree CA certificate and server certificates has been renewed, is there would be any impact on access manager?
Should we need to import any certificate on access manager admin console?
Actually we don't know what are the certificates access manager used. If any idm SSL DNS certificate or Organization tree certificate need to use in Access manager what will be the method to import it using access manager admin console.
0 Likes
2 Replies
ScorpionSting Absent Member.
Absent Member.

Re: Impact on access manager for certificate renewing in IDM

indranil2121;2498487 wrote:
Organization root tree CA certificate and server certificates has been renewed, is there would be any impact on access manager?
Should we need to import any certificate on access manager admin console?
Actually we don't know what are the certificates access manager used. If any idm SSL DNS certificate or Organization tree certificate need to use in Access manager what will be the method to import it using access manager admin console.


Okay, so the main problem here is that you have a solution installed that you know very little about (both how the different products work and interact with each other, if at all, and how what your organisation goals are trying to achieve with the products).

I suspect, for this immediate question, that there may just be LDAP dependecies on the new CA certificate if your IDM eDirectory instance is used for LDAP authentication in Access Manager. If you have no knowledge of how to extract the right CA certificate and import its dependency into Access Manager, you need to immediately get yourself on training courses for eDirectory, IDM, and Access Manager or at least get a consultant in with that knowledge to assist with documentation of the solution and some knowledge transfer.

Visit my Website for links to Cool Solution articles.
0 Likes
Knowledge Partner Knowledge Partner
Knowledge Partner

Re: Impact on access manager for certificate renewing in IDM

On 18-04-2019 1:26 AM, indranil2121 wrote:
>
> Organization root tree CA certificate and server certificates has been
> renewed, is there would be any impact on access manager?
> Should we need to import any certificate on access manager admin
> console?
> Actually we don't know what are the certificates access manager used. If
> any idm SSL DNS certificate or Organization tree certificate need to use
> in Access manager what will be the method to import it using access
> manager admin console.
>
>

NAM itself uses a bunch of certs, mainly for encryption between browser and server and then if you use the access gateway component it relies on
trusting the issue of the backend webservers you are protecting. Then on top of that, you have a user store configured which most likely uses LDAP
over SSL (or TLS i should really say) to either AD or eDir.

If any doubt, take the new trusted root and import it into NAM trusted root certs and assign it the NIDP trust store and the proxy trust store and
fingers crossed, nothing breaks 🙂

--
Cheers,
Edward
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.