I want to automate adding my custom certificates in 9.6.x (and later 25.x). I’ve found references to older versions of Integrity for file locations but have they changed in 9.6.x? If so, which directory?
Page 1 / 1
I have requested ability to automate certs into the BlueCat ecosystem especially now that public certs are changing their life cycle starting March 2026 to 200 days, then March 2027, 100 days then eventually down to 45days in March 2029. Now the public changes do not affect private certs but yes it would be nice to have those automations available.
DM
My coworker submitted a feature request for automated SSL Certificates - KI-026353
I think I followed that feature request.
Automation will definitely be needed by that time.
Even with our private certs we still want to automate the updates. We can automate generating and pulling the certs from our internal CA (which also monitors and alerts when the cert is nearing expiration), so installing them in Integrity is the next step.
But to answer the orginal question, yes, it appears that the certs are in the same places in 9.6.1 as in previous versions.
https://care.bluecatnetworks.com/s/article/How-to-manually-install-CA-Certificates-on-Address-Manager-and-DNS-DHCP-Servers says that the known CA certs are in /usr/share/ca-certificates and on my 9.6.1 server I find certs in /usr/share/ca-certificates/mozilla so that looks correct.
The keystore is still at /opt/server/proteus/etc/keystore, which matches https://care.bluecatnetworks.com/s/detail/a8B400000008PK8EAM
The user cert is in /data/server/conf per https://care.bluecatnetworks.com/s/detail/a8B400000008OoTEAU
I currently have a KI KI-026189
Reply
Sign up
Already have an account? Login
Login to the community
No account yet? Create an account
Login or Create an Account:
Log in with your Customer Care credentialsor
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.