TIBCO Spotfire® Server and Environment - Installation and Administration

Revoking a server certificate

If there are suspicions that a user on the Spotfire Server has signed unsafe mods, it is possible to revoke the user's certificates, which renders signatures invalid. This prevents other users from making a trust decision based on false premises. As an administrator, you have the option to revoke a specific certificate for a user or for all certificates from that user, from a certain point in time.

About this task

When a certificate has been revoked, any signature made on mods (after the specified time) will be considered invalid.

By default, only valid signatures can be trusted. If required (in special cases), it is possible to relax this limitation by changing a preference in Administration Manager (Application > Trust > Require valid signature to allow trust).

Before you begin

For instructions on using commands, see Executing commands on the command line.

Procedure

  1. Open a command prompt as an administrator.
  2. On the command line, enter config (config.sh on Linux) followed by the revoke-code-signing-certificate command and any required parameters: 
    config revoke-code-signing-certificate --start-date=2020-12-31 --username=jdoe

Results

The signatures will no longer be valid.

See also Trusting custom content in the Spotfire environment.

Copyright © Cloud Software Group, Inc. All rights reserved.