Loading

Configuring Tableau Server for OpenID Connect Using Uncommon or Self-Signed Certificates

Publiceringsdatum: Apr 13, 2024
Uppgift
How to configure Tableau Server for OpenID Connect (OIDC) when using an uncommon or self-signed certificate.
Steg

For Windows:

  1. Place the OIDC SSL certificate in the Tableau Server SSL folder. By default, the location is C:\Program Files\Tableau\Tableau Server\SSL\
  2. Open a command prompt as an administrator and navigate to C:\Program Files\Tableau\Tableau Server\<version>\repository\jre\bin\
  3. Run the following command to import the OIDC SSL cert into the cacert keystore: 
    • keytool -importcert -file "c:\Program Files\Tableau\Tableau Server\SSL\IdPSSLCert.cer" -keystore ../lib/security/cacerts -alias "OIDC IdP"
  4. A prompt for the cacert password will appear. Enter the password “changeit”, then confirm the import was completed successfully.
  5. Restart Tableau Server to ensure the OIDC SSL certificate is trusted on subsequent authentication attempts.
 

For Linux:

  1. Place the OIDC SSL certificate in a created folder in the Tableau Server directory. For example, a location could be /var/opt/tableau/tableau_server/ssl
  2. Navigate to /opt/tableau/tableau_server/packages/repository_<version>/jre/bin/
  3. Run the following command to import the OIDC SSL cert into the cacert keystore:
    • keytool -importcert -file '<cert dir from step 1>/<cert name>.cer' -keystore ../lib/security/cacerts -alias 'OIDC IdP'
  4. A prompt for the cacert password will appear. Enter the password “changeit”, then confirm the import was completed successfully.
  5. Restart Tableau Server to ensure the OIDC SSL certificate is trusted on subsequent authentication attempts.
Ytterligare resurser
In order for Tableau Server to communicate with an OpenID Connect OP utilizing SSL, the SSL certificate must be trusted. Not all certificates are trusted by default.
Knowledge-artikelnummer

001453742

 
Laddar
Salesforce Help | Article