Trend Micro - Securing Your Journey to the Cloud Business
Success
Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Updating Microsoft Azure credentials in SecureCloud

    • Updated:
    • 30 Dec 2019
    • Product/Version:
    • SecureCloud as a Service 3.7
    • SecureCloud On-Premise 3.7
    • Platform:
    • CentOS 6 32-bit
    • CentOS 6 64-bit
    • Linux - Red Hat RHEL 5 32-bit
    • Linux - Red Hat RHEL 5 64-bit
    • Linux - Red Hat RHEL 6 32-bit
    • Linux - Red Hat RHEL 6 64-bit
    • Linux - SuSE 10
    • Linux - SuSE 10 64-bit
    • Linux - SuSE 11
    • Linux - SuSE 11 64-bit
    • Ubuntu 10.04 64-bit
    • Ubuntu 11.04 32-bit
    • Ubuntu 11.04 64-bit
    • Ubuntu 12.04 32-bit
    • Ubuntu 12.04 64-bit
    • Windows All
Summary

Microsoft Azure requires additional credentials for the Agent to upload information the to SecureCloud device management.

In SecureCloud versions prior to 3.6, the credentials cannot be modified after the Agent has been registered to SecureCloud server.

This article discusses how you can update you Microsoft Azure credentials.

Details
Public

To update your Microsoft Azure credentials:

  1. Log in to your Azure account and download the .publishsettings file.

    The .publishsettings file is an .XML file.

  2. Open the .publishsettings file using a browser or text editor and look for the ManagementCertificate="XXXX" part where XXXX is the base64 encoded string.

    publishsettings file

  3. Copy the base64 encoded string to a text file.

    Example: azurecert.txt

  4. Decode the file using certutil (Windows) or base64 (Linux).

    Windows:

    1. Open a command prompt and go to the location of the text file you created in Step 3.
    2. Using the certutil command, decode the text file to create a .PFX file.

      certutil -decode <input file> <output file>

      Example: certutil -decode azurecert.txt azurecert.pfx

    Linux:

    1. Go to the directory of the text file you created in Step 3.
    2. Use the base64 command to decode the text file into a .PFX file:

      base64 -d inputfile > outputfile

      Example: base64 -d azurecert.txt > azurecert.pfx

  5. Using openssl, extract the pem certificate from the pfx file.

    Linux:

    1. For your convenience, create a /certs/ directory and move the .PFX file.
    2. Run the following command:

      # openssl pkcs12 -in /certs/azurecert.pfx -out /certs/azurecert.pem –nodes

    Windows:

    1. Download and install openssl.
    2. Create a C:\certs\ folder and move the .PFX file.
    3. Open a command prompt and go to the OpenSSL\bin folder.

      cd %homedrive%\OpenSSL\bin

    4. Use the openssl command to extract the pem certificate:

      openssl pkcs12 -in c:\certs\azurecert.pfx -out c:\certs\azurecert.pem –nodes

Linux

Using scconfig

  1. Go to the SecureCloud installation directory:

    # cd /var/lib/securecloud/

  2. Run the scconfig.sh tool:

    # ./scconfig.sh --update_credentials

  3. Provide the following information:
    • Azure Subscription ID
    • Management certificate file path (Example: /certs/azurecert.pem)
    • Management certificate password (optional)

Using scprov

  1. Go to the SecureCloud installation directory:

    # cd /var/lib/securecloud/

  2. Create an agentconfig.ini file:

    # vim agentconfig.ini

  3. Add the following in the file:

    [Microsoft-Azure]
    SUBSCRIPTION_ID=ID NUMBER
    CERTIFICATE_PATH=/certs/azurecert.pem
    CERTIFICATE_PASSWORD=

  4. Execute the scprov script:

    # ./scprov.sh reconf --agentconfig=agentconfig.ini

     

Windows

Using scconfig

  1. Go to SecureCloud installation directory:

    cd C:\Program Files (x86)\Trend Micro\SecureCloud\Agent\

  2. Run the scconfig.exe tool:

    scconfig.exe --update_credentials

  3. Provide the required information:
    • Azure Subscription ID
    • Management certificate file path (Example: C:\certs\azurecert.pem)
    • Management certificate password (optional)

Using scprov

  1. Create an agentconfig.ini file in the SecureCloud installation folder using Notepad or any text editor.

    The installation folder is usually C:\Program Files (x86)\Trend Micro\SecureCloud\Agent\.

  2. Add the following in the agentconfig.ini file:

    [Microsoft-Azure]
    SUBSCRIPTION_ID=ID NUMBER
    CERTIFICATE_PATH=/certs/azurecert.pem
    CERTIFICATE_PASSWORD=

  3. Run the following commands to execute the scprov script:

    cd C:\Program Files (x86)\Trend Micro\SecureCloud\Agent\
    scprov.exe reconf --agentconfig=agentconfig.ini

Premium
Internal
Partner
Rating:
Category:
Configure; Update
Solution Id:
1106319
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.