The self-signed certificate created by SecurityCenter when the application is installed is valid for two years. After the certificate expires, you must regenerate the SSL certificate. To regenerate the certificate, on the SecurityCenter server, perform the following procedure as a root user.
On the command line, type
# /opt/sc/support/bin/php /opt/sc/src/tools/installSSLCertificate.php
/opt/sc/src/tools/installSSLCertificate.php: This script generates a self-signed SSL certificate, which is not recommended for production.
The new certificate is created. The SecurityCenter service must be restarted.
service SecurityCenter restart
The SecurityCenter service is restarted, and the new certificate is used.
The following table lists the arguments that can be used with the installSSLCertificate script.
|-q||Suppresses the "This script generates a self-signed SSL certificate, which is not recommended for production." warning.|
|-h <IP|host name>||Specifies an IP address or host name that will be used as the Common Name for the certificate.|