You are here: Additional Resources > Regenerate SSL Certificate

Regenerate the SecurityCenter SSL Certificate

The self-signed certificate created by SecurityCenter when the application is installed is valid for two years. After the certificate expires, you must regenerate the SSL certificate. To regenerate the certificate, on the SecurityCenter server, perform the following procedure as a root user.

Steps

  1. On the command line, type /opt/sc/support/bin/php /opt/sc/src/tools/installSSLCertificate.php

    Example:

    # /opt/sc/support/bin/php /opt/sc/src/tools/installSSLCertificate.php

    /opt/sc/src/tools/installSSLCertificate.php: This script generates a self-signed SSL certificate, which is not recommended for production.

    The new certificate is created. The SecurityCenter service must be restarted.

  2. Type service SecurityCenter restart

    The SecurityCenter service is restarted, and the new certificate is used.

Optional Arguments

The following table lists the arguments that can be used with the installSSLCertificate script.

Argument Description
-q Suppresses the "This script generates a self-signed SSL certificate, which is not recommended for production." warning.
-h <IP|host name> Specifies an IP address or host name that will be used as the Common Name for the certificate.

Copyright © 2017. Tenable Network Security, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter Continuous View, Passive Vulnerability Scanner, and Log Correlation Engine are registered trademarks of Tenable Network Security, Inc. All other products or services are trademarks of their respective owners.