Cryptographic Security Platform 1.2 - Installation and administration guide [PDF][Releases]

See below the known issues common to all Cryptographic Security Platform 1.2.0 installations.

As explained in Certificate Manager for 1.2 known issues, after installing Cryptographic Security Platform 1.2.0, you must manually upgrade Certificate Manager and CA Gateway if you want Certificate Manager to support a Sectigo CA.

Installations with Certificate Enrollment Gateway cannot be restored (CSF-704 & EDM-18536)

Cryptographic Security Platform installations with a deployed Certificate Enrollment Gateway do not support Restoring the state.

Workaround:

Contact Entrust support for a new version of the csf-backup-restore.sh script
Open a user session in any of the Cryptographic Security Platform installation nodes.
Run the following commands to install the script.

sudo cp --force csf-backup-restore.sh /opt/entrust/scripts/rhel/

sudo chmod 550 /opt/entrust/scripts/rhel/csf-backup-restore.sh

sudo chown sysadmin:edm /opt/entrust/scripts/rhel/csf-backup-restore.sh
Follow the steps described in Restoring the state to restore the state.

Occasional restore failures of single-node installations (EDM-16171)

The process described in Restoring the state fails 75% of the time on single node installations.

Workaround: Run the clusterctl uninstall command to uninstall the cluster and re-try Restoring the state.

Installations with Certificate Authority do not support upgrading (EDM-19202)

Cryptographic Security Platform 1.1.0 installations with the Certificate Authority deployed solution do not support upgrading to Cryptographic Security Platform 1.2.0.

Workaround: Skip the 1.2.0 release and upgrade Cryptographic Security Platform 1.1.0 to 1.2.1

Session expiration does not redirect to the login page (ATEAM-17362)

When a user session expires, the Management Console does not automatically redirect to the login page.