Installing certificate in SAM v1.5.2 on Snare Central v8.4.2

Owned by jorge.rueda
Last updated: Jul 29, 2022 by Steve Challans
1 min read

For SAM to use a custom certificate, first it is required to install the certificate in the Snare central server, once the certificate has been  installed, restart SAM so the new certificate can be detected and then go to SAM UI to "Settings"->"General->"Agent HTTPS Certificate" option and choose the certificate from the selection list.

To install the certificate the procedure is as follows:

Given a CA certificate file foo.pem, follow these steps to install it on Snare Central:

  1. Create a directory for extra CA certificates in /usr/local/share/ca-certificates:

    sudo mkdir /usr/local/share/ca-certificates/SAM

  2. Copy the CA .pem file to this directory but rename it to crt:

    sudo cp foo.pem /usr/local/share/ca-certificates/SAM/foo.crt copy the private key to the private key store on the system sudo cp priv.key /etc/ssl/private/priv.key

  3. Let Snare Central add the .crt file's path relative to /usr/local/share/ca-certificates to /etc/ca-certificates.conf:

    sudo update-ca-certificates

  4. Restart SAM:

  1. Go to SAM UI to “Settings” → “General”

  2. Choose the correct certificate in “Agent HTTPS Certificate”