Managing certificates

When you use webhooks in CES to communicate with BMC Mainframe products such as Code Pipeline and Abend-AID, you might want to configure security certificates for those webhooks. When the webhooks communicate with third-party applications such as Jenkins, you can use the certificates to secure that communication.

To use the Certificates feature, you must have the Common Enterprise Service Certificates rights assigned to your user role.

You can use the Certificates page to upload and manage security certificates for Code Pipeline and Abend-AID webhooks. You can associate one certificate to multiple webhooks.

The Certificates page lists all the certificates uploaded and indicates which of them are currently in active use.

Related topics

Getting-started

Adding-a-webhook

Managing-security-roles

On the UI, you can move a column, refresh the table, search, filter, and sort the values in the table, and choose how many records you want to view in the table. For more information about these actions, see Common-UI-actions.

You can also perform the following actions:

Purpose

Action

Add a certificate.

Click Upload. In the Upload Certificate dialog box, perform the following steps:

  1. Specify a unique Certificate name.
  2. Click Browse to navigate to a valid certificate file (.pfx) and click Choose certificate to upload. The system validates the uploaded file.
  3. Specify a Certificate password. You must secure certificates with a password before you import them into CES.
  4. Specify the TrustStore location on the CES server and the TrustStore password. The TrustStore file must contain the trust authorities to authorize the certificate with the respective server.
  5. Click Upload.

The uploaded certificate appears in the Certificates table in the Not used status until it is associated with a webhook. For more information about associating the certificate with a webhook, see Adding-a-webhook.

Edit a certificate.

Click Edit Edit.pngin the relevant row.

If a previously uploaded certificate file has expired, you can edit the corresponding certificate details to replace the old certificate file with a new certificate file. If this certificate is associated with a webhook, the newly uploaded certificate file is automatically updated and mapped to that webhook.

Delete a certificate.

Click Delete Delete.pngin the relevant row.

Important

You cannot delete a certificate that is currently in use and associated with a webhook.

Filter the details at the column level.

In the Filter field, specify filter criteria.

For example, to view a specific list of certificates by a particular string in the certificate name and those currently not in use, enter Not used in the In Use - Filter field. Then, enter the specific string in the File name - Filter field. The UI dynamically populates and displays only the desired list of certificates.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*