Page created: 6 Nov 2020
|
Page updated: 12 May 2021
If the ASE certificate is changed after the deployment of PingIntelligence policy and it does not match with the certificate present in the ase.pem certificate file, you might encounter SSL related issues. To resolve them, complete the following steps:
- Undeploy the PingIntelligence policy by following either of the two options as applicable:
- Paste the correct certificate in the
/opt/pingidentity/pi/apigee/certs/ase.pem file. To obtain the
correct certificate, run the following
command.
# openssl s_client -showcerts -connect <ASE IP address>:<port no> </dev/null 2>/dev/null | openssl x509 -outform PEM > ase.pem
- Redeploy the PingIntelligence policy by following either of the two options as applicable:
Note: Make sure that the ase_ssl parameter in
/pingidentity/pi/apigee/config/apigee.properties file is set to
true.