Configure Asymmetric Audit Log Key Renewal

On the Asymmetric Audit Log Key Renewal page, operator can schedule automatic replacement of the Asymmetric Audit Log Key. For more information, refer to Create a Certificate Request.

To enable auto import certificate, follow the steps below:

  1. Go to Configuration >> configure Asymmetric Audit Log Key Renewal.

  2. Select the Enabled check box for automatic renewal of asymmetric audit log key.

  3. If the Validation Authority is installed in Windows, then the operator can either use one of the below options:

    • Select the Windows Certificate Store check box, if the certificates are getting stored in the Windows certificate store.

    • Select the Directory to locate the Validation Authority path where the certificates are stored.

  4. If the Validation Authority is installed in RHEL, then the operator can select the Directory to locate the Validation Authority path where the certificates are stored.

  5. Enter the common prefix name in the Asymmetric Audit Log Certificate File Prefix field as explained below:

    • Windows Certificate Store - Prefix should contain either the certificate CN substring or complete certificate CN.

    • Directory – Prefix should match with the certificate file name.

For example, if the certificate is getting renewed with the subject DN : CN=vadevcert1, DC=vadev, DC=org then, Operator can set the prefix name as vadev.

Note: If certificates stored in the Windows certificate store or Validation Authority path have the same prefix name, Asymmetric Audit Log Key Renewal will import the latest certificate based on the most recent date.

  1. Click Update Configuration to save the changes. Alternatively, click Revert Changes to return, without configuring the auto import.

  2. Make sure the Asymmetric Audit Log Key Renewal job is configured and started, For more details, refer Administrator Operations - Jobs.