Problem

The Internal CA password has been lost or forgotten.

Resolution

In case the password for the current Internal CA certificate was forgotten or lost, one would need to recreate the Internal CA and specify a new password in the process:

1. Navigate to Setup → Certificates → Internal CA tab and click Generate New CA

2. Provide the required information for the internal certificate and when done click Generate

Note: Generating a new internal CA would not invalidate the existing local certificates, as the old Internal CA would be not removed, but will be renamed to ca-old-0x<serial_number> under AdminUI → Setup → Certificates → Trusted CAs, where the <serial_number> would be replaced with the Serial Number of the certificate itself.

If a new internal CA has been generated and the old Internal CA is still valid, the local certificates issued by the old Internal CA would be still displayed as "Valid and Chained to a Trusted Root".