Hi Danilo,
I am glad you have resolved the issue and that my email helped somewhat - Just to capture things here, and thank you for your email and insights.
I [Danilo] followed Steps 1-3 at https://www.ibm.com/docs/en/cloud-paks/cp-waiops/3.1.1?topic=advanced-creating-custom-certificate-console before I asked the question. It did not work. However, I believe the issue was because I still had to restart the ngix service as mentioned on your email. Unfortunately, I stopped my cluster yesterday and when I started it today, the certificate was working, so I cannot guarantee that it was only that step missing. So, I would say, to change the certificate, one must:
Follow Steps 1-3 as stated above
Then:
REPLICAS=$(oc get pods -l component=ibm-nginx -o jsonpath='{ .items[*].metadata.name }' | wc -w)
oc scale Deployment/ibm-nginx --replicas=0
# scale up nginx
sleep 3
oc scale Deployment/ibm-nginx --replicas=${REPLICAS}
Also, please add two things in the documentation: @Stacy Pedersen
The official instructions on how to change the certificate. This would certainly be needed when a certificate expires
Mention in the integration with Teams that a valid certificate is needed for the integration to work, and then point to the instructions on how to do it.
------------------------------
Angus Jamieson
IT Service Management Solutions Architect
IBM
Edinburgh
------------------------------
Original Message:
Sent: Mon September 27, 2021 12:15 PM
From: Danilo Luna
Subject: Replace self signed certificates after the installation
In the documentation, it describes how to use a custom certificate during installation (Creating a custom certificate for the console). However, I could not find any information on how to replace the self signed certificate by a custom certificate AFTER the installation. In my case, I installed the system using the self signed certificate, and now I cannot integrate ChatOps using Teams, as it is mandatory to have a valid public certificate otherwise the integration will not work (this is also not documented by de way).
Any ideas how to do this?
Thanks
Danilo
------------------------------
Danilo Luna
------------------------------