For the record this is how I

Mark H · ‎04-28-2015

Hi everyone,

I (stupidly) enabled the need for user certificates in the system policy for my FireSIGHT Management Centre. How can I disable this using the admin account via CLI?

I have found some instructions (system disable-http-user-cert), but it appears they are for using an ordinary user account. However using the admin account I get a shell prompt instead of a configuration wizard.

Kind regards,

Mark

Mark H · ‎04-28-2015

For the record this is how I resolved this.

Escalated in to super user, edit /etc/httpd/ssl_certificates.conf and comment out the "SSLVerifyClient require" line and restart.

Brian Hebertson · ‎07-28-2015

There is a chance I did the same thing. Thank you for this post it works.

jaime.pedraza · ‎11-04-2016

Disabling the option works without issues, thanks. Additionally, there is no need to restart the whole system. If you can not do that, the following line restart the gui and it is enough to recover the access: pmtool restartbytype gui

cisco_kiwi · ‎10-23-2017

I have managed to do the same thing. They only problem I have now is when I logon to the CLI I am not able to run any of the commands.

If I try I get

sh: edit : command not found or sh: show: command not found

I am logged in as the root user. Any ideas how I can run the commands?

User Cert Lockout