Using Simple Storage Service (S3) API migrator for S3-compliant storage devices having a self-signed certificate

Article: 100049743
Last Published: 2021-03-19
Ratings: 1 0
Product(s): Enterprise Vault

Description

When S3-compatible storage devices are using a self-signed certificate, then that certificate is required to be imported to all Enterprise Vault storage servers for proper TLS communication.

Perform the following steps to import a self-signed certificate of S3-compliant storage device on Enterprise Vault server.

  1. Ensure that you have a self-signed certificate of S3-compliant storage device in PEM format.
  2. Copy its content into a clipboard for pasting on the Enterprise Vault server.
    The first line should contain the first -----BEGIN CERTIFICATE-----
    The last line should contain the final -----END CERTIFICATE-----
  3. On the Enterprise Vault server, open the cacert.pem file located in the <EnterpriseVault_Install_Path>\OST\x64 directory.
    For example: C:\Program Files (x86)\Enterprise Vault\OST\x64
  4. Append the copied content of the self-signed CA certificate to the bottom of the cacert.pem file, and then save the file.

Note: AN UPGRADE OF THE ENTERPRISE VAULT SOFTWARE MAY REVERT ANY CHANGES MADE TO THE CACERT.PEM FILE, MAKING IT NECESSARY TO REPEAT THESE STEPS AFTER THE UPGRADE.
Note: Enterprise Vault does not recommend using self-signed certificates.
 

Was this content helpful?