Replacing the GoAnywhere System Certificate

Import the new certificate

Navigate to ‘Encryption’ > ‘Key Management System’

Click on the current number of certificates under the System vault (this number is a link into the certificate vault)

Import the new certificate

Configure GA to use the new certificate

Navigate to System > Admin Server > Administrator

Select the pencil icon to the left of ‘Administrator’

Select ‘Listener: Secured’ from the menu on the left of the screen

Select the ‘SSL’ tab

Select the new Key Name from the drop-down box

THIS CHANGE WILL REQUIRE THE GOANYWHERE WINDOWS SERVICE TO BE RESTARTED IN ORDER TO TAKE EFFECT

The Admin console system should now be secured in the log-in URL

Update the Various Services to Point to the New Certificate

If your licence does not permit certain services to run these do not necessarily need to be updated

Navigate to Services > Service Manager

HTTPS > Edit >Listener: default > SSL tab

Select the new Key Name for the new certificate

(Repeat for each Listener node if there is a cluster)

Restart the HTTPS service for each server via the cog icon

FTP > Edit >Explicit SSL option

Select the new Key Name for the new certificate

(Repeat for each Listener node if there is a cluster)

Restart the FTP service for each server via the cog icon

FTPS > Edit >Implicit SSL option

Select the new Key Name for the new certificate

(Repeat for each Listener node if there is a cluster)

Restart the FTPS service for each server via the cog icon

GoFast > Edit >Control Channel SSL option

Select the new Key Name for the new certificate

(Repeat for each Listener node if there is a cluster)

Restart the GoFast service for each server via the cog icon

PeSIT > Edit >Listener:default > SSL option

Select the new Key Name for the new certificate

(Repeat for each Listener node if there is a cluster)

Restart the PeSIT service for each server via the cog icon