Using Self-Signed Certificates for All Nodes in a Cluster

If you plan to use self-signed certificates, we recommend that you use them for all nodes in the cluster. You can now set the entire cluster to accept self-signed certificates.

1. Log into the KeyControl Vault Management webGUI using an account with Domain Admin privileges.
2. In the top right, click the Switch to Appliance Management link.
3. In the top menu bar, click Cluster.

4. Click the Cluster tab and select Actions > Use Self-Signed Certificate.

5. Click Proceed at the prompt.

   KeyControl generates a new self-signed certificate for all nodes in the cluster, and then restarts the server. You will need to log back into KeyControl after the restart.

   Tip: If you are using IE, you may receive an alert stating that revocation information for the certificate is not available. Click Yes to acknowledge the alert and restart the web service. If you are using Chrome and you receive a series of connection errors when the web service restarts, open the webGUI login page in a new tab.

   To view the certificates, click the Servers tab, select a node, and then click the links next to Internal/External web server.