Renew external certificate for the Engine

You must renew the external certificates for the Engine manually before it expires.

Before you begin

You must have the external Certificate Authority (CA) configured.
Note: This is the certificate authority that is used to sign certificate requests.

Steps

  1. Select Engine Configuration.
  2. Browser to Engines.
  3. Generate the certificate request:
    1. Right-click the Engine, then select Certificate > Renew Certificate.
    2. Click the Yes button, and then click the OK button. The certificate request is generated.
  4. Export the generated certificate request:
    1. Right-click the Engine, then select Certificate > Export Certificate Request.
    2. Navigate to the desired location and click the Export button, and then click the OK button.
  5. Sign the exported certificate request by using the external Certificate Authority (CA).
  6. Import the signed certificate:
    1. Right-click the Engine, then select Certificate > Import Certificate.
    2. Select one of the following options:
      • The From File option:
        1. Select the From File radio button, and then click the Browse button.
        2. Navigate to the location where the signed certificate is saved.
        3. Select the signed certificate file, and then click the Import button.
        4. Click the OK button.
      • The As Text option:
        1. Select the As Text radio button.
        2. Paste the certificate details.
        3. Click the OK button.
  7. Verify the expiration date of the renewed certificate. For more details, refer to the Check the expiration date of the certificate topic.
  8. Refresh the policy for the engine. For more details, refer to the Refresh the currently installed policy topic.