▲ 1 r/CyberARk
We need to renew the certificates for the Vault, PTA, and PVWA. What would be the impact if we do not renew them?
The certificates for the Vault, PTA, and PVWA are expiring soon.
For the PVWA, we are already using the certificate provided by the load balancer, so there is no issues there (same certificate currently used by the PSM too).
- The Vault certificate is going to expire. What would be the impact if we do not renew it? Also, is it really necessary to restart the PrivateArk service on the Vault after replacing the certificate? In addition, can we use the same certificate provided by the load balancer, similar to the certificates used for the PVWA and PSM? Must be signed by a certificate authority or is it ok to use default self-signed certificate?
- The PTA is currently not in use, and we would like to understand the impact of not renewing its certificate. Would it also be acceptable to use the same certificate provided by the load balancer? Must be signed by a certificate authority or is it ok to use default self-signed certificate?
- Is there any specific documentation available on how to replace certificates for the different CyberArk components, specifically the Vault and PTA?
Thank you
u/TemperatureSignal199 — 7 days ago