Using certificates that are signed by an internal certificate authority

If the certificate is issued by an internal certificate authority and not a commercial certificate provider, IBM® QRadar® must be updated to include the internal root certificate into the local certificate store for proper certificate validation. Root verification certificates are automatically included with the operating system.

About this task

Follow these steps to update the trust anchors root certificate store in RHEL on the QRadar console and all QRadar hosts.

Procedure

  1. Copy the CA's root certificate to /etc/pki/ca-trust/source/anchors/ on the QRadar console.
  2. Run the following commands at the SSH command line on the console: 
    /opt/qradar/support/all_servers.sh -p /etc/pki/ca-trust/source/anchors/<root_certificate> -r /etc/pki/ca-trust/source/anchors
    /opt/qradar/support/all_servers.sh -C update-ca-trust