Fixing the Certificate Security Browser Warning
To fix a browser warning that the JSA security certificate is not valid or not secure, you can download a certificate from the issuing URL and import it into your browser.
-
Download the certificate authority (CA) content from the JSA server:
-
Download the root CA from http://<host_ip>:9381/root-qradar-ca_ca.crt.
-
Download the intermediate CA from http://<host_ip>:9381/intermediate-qradarca_ca.crt.
Note:If you need the CA bundle, you can concatenate the intermediate CA with the root CA.
-
Copy the CA files to your local computer, and then log out of JSA.
Import the CA into your browser by using the appropriate method for your browser:
-
Close and then restart the browser.
-
Log in to JSA and verify that the browser no longer displays the security warning.
When you click the lock icon next to URL, it should say connection secure.
Installing and Updating a Certificate Authority After a Software Update
If you choose not to use the local Certificate Authority during the software update, you can select to use it after the installation is complete.
Some software updates include a new local Certificate Authority (CA). During the update, you can choose to add this CA or skip this process. If you didn't add the new CA during the update, you can use the following steps to create the new CA afterwards.
On the JSA Console, type the following command:
/opt/qradar/vault/bin/install-qradar-ca.sh
Restart Tomcat on the Console by typing the following command:
service tomcat restart
Log in to the Console, navigate to the Admin tab, and then click Deploy.