Hi, I want to ask- How does the SSL certificate from ESM manager gets uploaded on the Logger?
How does the SSL authentication takes place in ArcSight Logger.
I've proceeded as the ESM and Logger Admin Guides have mentioned-
- First I run keytoolgui from the ESM and I open ESM's truststore.
- Then I export the ESM's certficate that is DER encoded as mentioned in the guide, save it as .cer extension.
- Then I copy it the machine which runs my Logger, and I access the Logger and go to Configuration-> Certificates -> Add-> Upload the certificate I exported with an alias.
After this my certificate just vanishes, the screen says No Certificates to display.
Please help me out, if anyone of you has been able to do this succesfully.
use PEM, not DER. The Logger documents clearly state that certificates should be encoded in PEM.
"Logger Admin Guide 5.5", page 385:
The imported certificate must be in Privacy Enhanced Mail (PEM) format.
Hopefully it will help.
Just did this the other day. Like Alex says you need to use PEM. You can also grab the cert if you open the webconsole and export the cert via your browser. Then import via the method you used above.
Should work with no issues. Verify the cert uploaded by going to Configuration>Certs