How do I update the NSP TLS certificate for LDAPS remote authentication?
Purpose
The TLS certificate for LDAPS remote authentication must be current, or the remote authentication attempts fail.
Perform this procedure if the TLS certificate of the LDAPS remote authentication server is updated.
Note: You must perform the procedure on each NSP cluster.
Steps
1 |
Obtain the new certificate. |
2 |
Open a terminal session to the NSP deployer VM. |
3 |
Log in as the root or NSP admin user. |
4 |
Transfer the certificate to the following directory on the NSP deployer VM: /opt/nsp/NSP-CN-DEP-release-ID/NSP-CN-release-ID/tls/ldap |
5 |
Enter the following to apply the certificate: # /opt/nsp/NSP-CN-DEP-release-ID/bin/nspdeployerctl install --config --deploy ↵ |
6 |
Restart the Keycloak pod.
End of steps |