Importing TrueSight Server Automation private certificates in Yellowfin

You must import the TrueSight Server Automation CA certificates in Yellowfin.

Do the following:

1. Log in to the system where TrueSight Server Automation is installed.
2. Copy the CA certificate chain certificates that signed the TrueSight Server Automation certificate to a temporary directory C:\temp on the Application Server. The CA certificate chain contains one certificate file for each CA. For example, if the CA chain contains root, intermediate, and signing CAs, you should have three files each with a single certificate in it.
3. Open the command prompt and navigate to the following directory:
   
   (Windows) <TSSA_INSTALL_DIR>\NSH\jre\lib\security
   Example:
   C:\Program Files\BMC Software\BladeLogic\NSH\jre\lib\security
   
   (Linux) <TSSA_INSTALL_DIR>/appserver/NSH/br/java/lib/security
   Example:
   /opt/bmc/bladelogic/appserver/NSH/br/java/lib/security
   
   

4. Delete the existing alias from the keystore as follows:
   (Windows)

   <TSSA_INSTALL_DIR>\NSH\jre\bin\keytool.exe -delete -alias yellowfin-server -keystore cacerts

   (Linux)

   <TSSA_INSTALL_DIR>/appserver/NSH/jre/bin/keytool.exe -delete -alias yellowfin-server -keystore cacerts

5. Import the CA-signed certificate of TrueSight Server Automation in cacerts by using the following command:
   (Windows)

   <TSSA_INSTALL_DIR>\NSH\jre\bin\keytool -import -trustcacerts -keystore cacerts -file "C:\temp\yellowfin_server.cer" -alias yellowfin-server

   (Linux)

   <TSSA_INSTALL_DIR>/appserver/NSH/jre/bin/keytool -import -trustcacerts -keystore cacerts -file "/tmp/yellowfin_server.cer" -alias yellowfin-server
6. Repeat these commands for each certificate in the CA chain using a unique alias for each entry.