Product Documentation
Abstract
Entrust.net Secure Server Certificate Authority Expiring
The Access Manager appliance is reporting that Certification Authority/CA certificates are expiring. Why is this happening, and how is it resolved?
Content
The WGAWA0045W error is produced when a certificate is due to expire within the warning threshold. In this case it is the Entrust.net signer certificate, which is used to ensure the trust of a certificate or certificate chain. Various Certification Authority certificates are provided for convenience in the pdsrv key database because this is the default database for the public facing certificates that users will get in their browsers, as well as the default database for verifying certificates presented by junctioned servers.
https://www.ibm.com/support/knowledgecenter/SSPREK_9.0.6/com.ibm.isam.doc/messages/messages/WGAWA0045W.html
https://www.ibm.com/support/knowledgecenter/SSPREK_9.0.6/com.ibm.isam.doc/messages/messages/con_events_framework.html
If this cert is not renewed then any certificate signed by that certificate authority (CA), Entrust.net, will not be a trusted certificate.
For this particular certificate, being that it has been discontinued (https://www.entrust.com/get-support/ssl-certificate-support/discontinuing-public-trust-for-1024-bit-rsa-root/), it can be deleted. If you wish to use the latest version of this certificate, you can update the signer in your keystore by downloading it from entrust's website and importing it into the necessary keystore on your appliance.
Entrust root certificates
https://www.entrustdatacard.com/pages/root-certificates-download
The equivalent certificate is the "Entrust.net Certificate Authority (2048)" certificate.
Document Location
Worldwide
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSZU8Q","label":"IBM Security Access Manager"},"Component":"SSL Certificates","Platform":[{"code":"PF004","label":"Appliance"}],"Version":"All Versions","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]
Product Synonym
ISAM
Was this topic helpful?
Document Information
Modified date:
15 May 2019
UID
ibm10884626