...
Create a directory for extra CA certificates in
/usr/local/share/ca-certificates
:Code Block sudo mkdir /usr/local/share/ca-certificates/SAM
Copy the CA
.crt
file to this directory:Code Block sudo cp foo.crt /usr/local/share/ca-certificates/SAM/foo.crt
Let Snare Central add the
.crt
file's path relative to/usr/local/share/ca-certificates
to/etc/ca-certificates.conf
:Code Block sudo update-ca-certificates 4.
Restart
SAM:
Code Block |
---|
sudo /etc/init.d/snare restart |
...
Go to SAM UI to “Settings” → “General”
Choose the correct certifciate in “Agent HTTPS Certificate”
NOTE: In case of a .pem
file on Snare Central, it must first be converted to a .crt
file:
Code Block |
---|
openssl x509 -in foo.pem -inform PEM -out foo.crt
|
Or a .cer
file can be converted to a .crt
file:
Code Block |
---|
openssl x509 -inform DER -in foo.cer -out foo.crt
|