Carbon Black uses a certificate chain file to perform a proper OCSP stapling.
- Edit the certificate sgw_certificate.pem in any editor of your choice and copy all the content between
-----END CERTIFICATE-----.If your certificate has the chain already, you might want to copy only the first occurrence of
- Paste the content in the text box on the Certificate Chain Composer site and click Compose.
It generates the certificate chain in the lower half of the page.
- Copy the entire content and save it as the sgw_chain.pem file.
- Copy the sgw_chain.pem file in the /data/certs directory on the Linux server hosting the Sensor Gateway.