Installing a custom signed SSL certificate

Ops Center Administrator Getting Started Guide

Version
10.8.x
File Size
916 KB
Audience
anonymous
Part Number
MK-99ADM000-13

You can log in using SSH to the Ops Center Administrator server to install a custom signed SSL certificate.

Because the current installation always searches for disk space under the “root” partition, you must ensure that you have a partition with free space available. You cannot install Ops Center Administrator in a customized location.
  1. Log in using SSH to the Ops Center Administrator server.
  2. Get the server.key file from the container:
    • Docker:
      docker cp $(docker ps --format "{{.ID}} {{.Image}}" -a | grep "rdocker:6000/rainier-infra-proxy" | awk '{ print $1 }'):/etc/nginx/certificates/server.key /tmp
    • Podman:
      podman cp $(podman ps --format "{{.ID}} {{.Image}}" -a | grep "rdocker:6000/rainier-infra-proxy" | awk '{ print $1 }'):/etc/nginx/certificates/server.key /tmp
  3. Navigate to the /tmp folder and run the following command to create the server.crt file:
    # openssl req -new -newkey rsa:2048 -keyout server.key -out server.csr -nodes
  4. Send the server.csr file to the certification authority to get the server.crt file.
  5. Open the Ops Center Administrator virtual appliance manager UI.
  6. From the Advanced menu, click Certificate Settings.
    1. Copy the server.crt (from Step 4) content into the Certificate area.
    2. Copy the server.key content into the Private.key area.
  7. Click Submit and wait for five minutes.
  8. Launch the Ops Center Administrator UI and verify the SSL certificate from your browser.