Renew SSL Certificates for NorthStar Web UI
NorthStar generates SSL certificates during installation. You can renew or replace these SSL certificates generated during installation with the trusted certificates issued or approved by the information technology department in your organization. This topic describes how to replace the SSL certificates for web processes.
The SSL certificate files cert.pem and key.pem are located at /opt/northstar/web/certs/. Both these certificates are in X.509 format and you must restart the web process after you replace the files.
For internal server communications to happen seamlessly, the servers must have valid security certificates installed. However, these certificates do not affect the web processes, and needs to be replaced or renewed only if your security team needs you to do so.
SSL certificates for individual servers are located in these locations:
Health Monitor—/opt/northstar/healthMonitor/certs
ES Proxy—/opt/northstar/esauthproxy/certs
Web Health—/opt/northstar/web/routes/v1/health/certs
SNMP Collection—/opt/northstar/snmp-collector/conf
To replace the SSL certificates for NorthStar web UI:
NorthStar overwrites any user-defined certificates during an upgrade. You need to replace the certificates again after an upgrade.