How do I update the NSP TLS certificate for LDAPS remote authentication?
Purpose
The TLS certificate for LDAPS remote authentication must be current, or the remote authentication attempts fail.
Perform this procedure if the TLS certificate of the LDAPS remote authentication server is updated.
|
CAUTION Service Disruption |
Performing the procedure requires a restart of each NSP cluster, which is service-affecting.
You must perform the procedure only during a scheduled maintenance period.
Note: You must perform the procedure on each NSP cluster.
In a DR deployment, you must perform the steps first on the standby NSP cluster.
Steps
1 |
Obtain the new certificate. |
2 |
Log in as the root or NSP admin user on the NSP deployer host. |
3 |
Open a console window. |
4 |
Transfer the certificate to the following directory on the NSP deployer host: /opt/nsp/NSP-CN-DEP-release-ID/NSP-CN-release-ID//tls/ldap |
5 |
Enter the following to apply the certificate: # /opt/nsp/NSP-CN-DEP-release-ID/bin/nspdeployerctl install --config --deploy ↵ The updated certificate is applied. |
6 |
Close the console window. End of steps |