Creating and importing certificates in TrueSight Presentation Server
BMC Confidential. The following information is intended only for registered users of docs.bmc.com.
Where to go from here
Once you secure the Presentation Server, you can check how to secure the TrueSight Infrastructure Management. For details, see Creating and importing certificates in TrueSight Infrastructure Management.
Related topic
To manually create and import signed certificates, see Implementing private certificates in TrueSight Operations Management.
Was this page helpful? Yes No
Submitting...
Thank you
Comments
"Supported with 11.3.02 and later
The tssh certificate command, to create and import certificates, is supported only with TrueSight Presentation Server version 11.3.02 and later."
We should have a link here for customers who are on 11.3.01, which points to the old openssl link.
What is command for TSO certificate import ?
Hi Abhay,
I am checking this with the TSO IDD.
Shweta Hardikar ,
Can you please check this query from Abhay and respond.
Thanks,
Rashmi
Hi Shweta Hardikar,
Any update on this comment?
Hi Abhay,
TSO certificate import instructions are covered as part of the following topic:
Securing communication between TrueSight Presentation Server and other BMC products
Thanks,
Rashmi
2 Comments:
A) When doing "tssh certificate verify [TSPS/TSIM/RSSO/ITDA/AVM/BladeLogic", you shouldn't have to identify the server and the port to verify it. If it knows about the certificate and the server it should just display the info that it has or state that it doesn't know about it. The verify command looks like a simple wrapper around openssl's s_client @ https://www.openssl.org/docs/man1.0.2/man1/openssl-s_client.html
B) The regular expression notation for the command options "tssh certificate verify [TSPS/TSIM/RSSO/ITDA/AVM/BladeLogic" is wrong. It should be "tssh certificate verify [TSPS|TSIM|RSSO|ITDA|AVM|BladeLogic]". You're using '/' when it should be '|' and you're missing the closing ']'.
Hi,
Thanks for your feedback.
Part A: I have shared the feedback with the certificate SMEs.
Part B: I have updated the text and published the document.
Thanks,
Rashmi
Hi, Implementing private certificates in Presentation server in High Availability Mode section and Point number 3 is "Shutdown the secondary server". Is this right ? I think it should be primary server.
Hi Satish,
I will discuss this with the SME and update you.
Thanks,
Rashmi
Hi,
I discussed this with the SME. As per the SME inputs, it is the secondary server.
Thanks,
Rashmi
I've created self-signed certificate and want to use it across RSSO, TSO, TSSA, ARS and so forth.
Please provide instruction on how to utilize a new keystore which can be used across all "TrueSight" solutions.
This article is really complex. Can you simplify it?
Hi,
I have sent you an email, and have copied the certificate SME in the email.
Closing this here.
Thanks,
Rashmi
Log in or register to comment.