Using your own SSL certificate for an on-premises policy console

To replace the included SSL certificate that ships with the Blue Cedar Policy Console with your own certificate, please follow the steps outlined below.

Step-by-step guide


  1. Copy the new certificate and key you want to use to /etc/policy-console.crt and /etc/policy-console.key on the console machine.
  2. Download this script and copy it to your console: mountCert.zip
  3. Run the following commands as root user.

    unzip mountCert
    ./mount-cert.sh
  4. When the console restarts, you can view the certificate in use by running this command. The certificate in use should match the certificate you provided.

    openssl s_client -showcerts -connect localhost:443