Updating the TCP Relay or TCP Relay logging certificate

This section describes how to use the Centrify-PAS-ModifyInstallation.ps1 script to update the certificate on the TCP Relay node or the TCP Relay Logging node. For additional Centrify-PAS-ModifyInstallation.ps1 script information, see Centrify-PAS-ModifyInstallation.

To update or replace a TCP Relay or TCP Relay logging node certificate:

Note:   Relay nodes and logging nodes are treated similarly. The optional logging nodes can be upgraded using the same procedure as relay nodes. See Updating the TCP Relay or TCP Relay logging certificate for more information.

  1. If you are not already logged in to the Management node, log in as a user with administrator rights.
  2. At an elevated PowerShell prompt, run Centrify-PAS-ModifyInstallation.ps1 using the proper parameters to update or change the TCP Relay or TCP Relay Logging node certificate.

    Parameter

    Description

    TCP Relay node:

     

    [-NewRelayCertificate]

    Use this parameter to generate and configure a new security certificate for TCP Relay nodes. For example:

     

    .\Centrify-PAS-ModifyInstallation.ps1
    -NewRelayCertificate

    TCP Relay Logging node:

    [-NewLoggingRelayCertificate]

    Use this parameter to generate and configure a new security certificate for the TCP Relay Logging node. For example:

    .\Centrify-PAS-ModifyInstallation.ps1
    -NewLoggingRelayCertificate

  3. After updating the certificate, reboot the Web and Background nodes.