This documentation supports the 9.0 version of BMC Atrium Single Sign-On, which is in "End of Version Support." However, the documentation is available for your convenience. You will not be able to leave comments.Click here to view the documentation for a supported version of Remedy Single Sign-On.

Adding and removing a CA certificate

Adding a CA certificate is necessary in the following circumstances:

  • Common Access Card (CAC) authentication is used
  • The Department of Defense (DoD) issues new CA certificates
  • You are using Secure Sockets Layer (SSL) with LDAP for authentication

By default, the BMC Atrium Single Sign-On TrustStore already contains the current certificates for CAC authentication.

Adding a CA certificate

To add a CA certificate, see Importing-a-certificate-into-the-truststore

Note

Replacing the self-signed certificate on the BMC Atrium Single Sign-On server invalidates the certificates that are already accepted by users. In addition, you must install the new certificate into the truststore of all integrated BMC applications.

Removing a CA certificate

Before you remove a certificate, identify the alias of the certificate from the list of certificates.

To remove a CA certificate

  1. On the BMC Atrium SSO Admin Console, click Edit Server Configuration. The Server Configuration Editor is displayed.
  2. On the Certificates tab, select TrustStore from the Certificate Store list for removing a certificate.
  3. Click the certificate alias to view the details before you delete the certificate.
  4. Select the certificate and click Delete.
  1. Click Save to close the Server Configuration Editor.
  2. Stop and restart the BMC Atrium Single Sign-On server.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*