How To: Completely Remove eSync Certificates

  • Updated

You've changed the server's host-name, re-installed the Ektron Windows Service, or just need to start fresh. Here is the process for completely removing eSync certificates.

  1.  In the Web.config, remove the hashed portion from the 'encodedValue' key.

    BEFORE:
    <add key="encodedvalue" value="3232498374987OIENNVIOEJWOIJFNIOJNIEFOJWEFJWOIE1234512" />

    AFTER:

    <add key="encodedvalue" value="" />

  2. In the Ektron.ASM.EktronServices40.exe.config, delete the entire encodedValue key just as you did in the web.config.

  3. In the same file delete any references to the certificates. These references usually have the name of the servers you are syncing from and to. See the following screenshot show

 

BEFORE:

cert_references.png

 AFTER:

EncodedValueEWSAfter

3. In the EktronWindowsService40 folder, delete the certificates [*.cer, *.pfx, and *.pvk]:

deleteCerts3

4. Do the same in site-root.

deleteCerts4

5. And again in the Security Configurator folder (C:\Program Files (x86)\Ektron\CMS400v9x\Utilities\SecurityConfig\SecurityConfigurator):

deleteCerts5

6. Repeat for each site/server in the relationship. Once complete, you should be able to generate wholly new certs on each machine and exchange them normally. When generating the new certificates choose the 'discard existing keys' option.