NetIQ Operations Center - Code Signing Certificate Update
I wanted to bring up an item related to NetIQ Operations Center. For security and compliance purposes, we digitally sign the Operations Center Java Web Start client jar files with a code signing certificate. This is useful for large enterprise customers with specific security rules and regulations. The purpose of this is to inform users that an application is about to be run, but it has been validated to to be from a known company and the jar files have not been tampered with.
The reason I am blogging about this today is to inform you that the certificate for the 5.0 Operations Center thick client expires this week. This is not a problem for the actual execution and operation of the client, it is more that you may experience an altered window when allowing the client to run on your desktop.
When you launch the client, you should receive a warning that the digital signature has expired. It will do a final prompt to confirm that you really want to run the application. You are able to click a checkbox so you will not be prompted again when you run the client the next time. There should be no impact on feature and functionality, rather this is just an informative message that the digital certificate has expired.
We are planning on providing an updated certificate, but this will not occur until we do a full major and/or minor release of Operations Center. Unfortunately, we are not able to provide an updated certificate within a patch bundle. So in the meantime, instruct your users to click the Trust checkbox, click on the Run button and the client should be fine.
As a point of reference, the 4.7 release that has past End of Life, which a few customers still run in production today, has been expired since December 2011.
If you have any additional questions on this, please feel free to reach out to Support.