Policy Center LDAPS certificate generated for incorrect host after installation

Solutions ID:    KB4740
Version:    1.0
Status:    Published
Published date:    11/07/2011

Problem Description

In some versions of Policy Center, LDAPS certificates are generated using the hostname of the device, adding the suffix "SSL", rendering the certificate valid for the incorrect hostname.


There is a certificate generation utility included and pre-configured upon installation. Please take the following steps to re-create your SSL certificate for the correct host name.

    1.  Find your installation directory for Policy Center, the default is C:\Blue Coat Systems\PolicyCenter.

    2.  Open the \dsssl directory. Confirm the contents of the file "dsName.txt" matches the hostname PolicyCenter was installed on.

    3.  Run "Certificates.exe".

    4.  Choose option "i - initialize the certificate database" by pressing the "i" key, and enter.

    5.  Re-check your LDAPS certificate.


If you require that weak and medium strength ciphers are disabled, or have disabled them in the past, you may wish to use KB4538 to disable them, as the above process will re-set this functionality to the default settings.

Rate this Page

Please take a moment to complete this form to help us better serve you.

Did this document help answer your question?
If you are finished providing feedback, please click the RATE CONTENT button. Otherwise, please add more detail in the following text box and then click RATE CONTENT.

Your response will be used to improve our document content.

Ask a Question