Manually renew client certificate
Between the duration of 90 days and 60 days of the client's certificate expiry, the client logs the Client certificate will expire in <number> Days
notification message every day. In-between the duration of 60-0 days, if the Certificate Auto Renewal toggle is turned on, the client certificate will be auto-renewed. Else, the client will log the notification message everyday and can manually renew the certificate as described below.
For Kubernetes deployment with Helm
In the
values.yaml
file, underconfiguration
, update the value of servercrt and serverkey with the ones received from the CipherTrust Manager.Update your DPG deployment using the following command.
For Kubernetes deployment without Helm
In your deployment file, in the
data
section ofkind:Secret
, update the value ofserver.crt
andserver.key
with the ones received form the CipherTrust Manager.Update your DPG deployment using the following command.
For Standalone deployment
Stop the existing container.
Re-run the DPG in container environment, as shown below:
As soon as the DPG container comes up, it will get the new certificate and configurations from the CipherTrust Manager.