HomeSupercharger KBHow ToHow To Setup Supercharger Web GUI for HTTPS

5.17. How To Setup Supercharger Web GUI for HTTPS

There are many different ways to configure Supercharger to use HTTPs for its website. Configuring Supercharger to use HTTPS is the same as configuring HTTPS for any website. Your organization will have to determine which process meets its security requirements. Because of this, we do not provide a guide for every possible way on setting up websites using HTTPS. This is fully documented online from multiple resources.  Below is one possible solution of many.

1. Install the "Active Directory Certificate Services" role on a domain server.

2. After installing the role perform the post-configuration steps.

3. Be sure to select Enterprise CA.

4. Select Root CA.

5. Create a new key. If you already have an existing key then you most likely don't need this article.

6. After configuration, open IE and go to http://localhost/certsrv and click on Request a Certificate.

7. Click on the "Submit a certificate request..." option. Leave this open. You will come back to it in a later step.

8. Open MMC and add Certificates add-in. Navigate to Personal and under actions go to All Tasks\Advanced Operations\Create Custom Report.

9. Click next and then select “Proceed without enrollment policy”.

10. Leave the defaults and click Next.

11. Expand the details and click properties. Give the certificate a friendly name and Description.

12. Click on the Subject tab and add the Common Name, OU, Organization, Locality, State and Country just as you would if you were requesting a normal certificate. The Common Name should be the hostname of the Supercharger Manager server. Then in the Alternative dropdown select DNS and add the FQDN of the Supercharger Manager server and also the hostname of the Supercharger Manager.

13. On the Extensions tab expand the Extended Key Usage section and add Server Authentication and Client Authentication and click Apply.

14. Click on Private Key tab and set the Key Options size to 2048 and set the key to be exportable.

15. Click Next and save the file name and set to Base 64.

16. Open the file that you just created using a text editor. Copy the Certificate Request content. Be sure to include the header and footer along with the request string.

11. Go back to the CA server from step 7. Paste in the request. Select Web Server from the dropdown.

12. You should get a Certificate Pending page.

 13. Go back to the Certification Authority. In the Pending Certificates folder you should now see the cert. Go to tasks and issue the certificate.

14. Go back to IE and navigate to http://localhost/certsrv. Click on "View the status of a pending certificate request".

15. Select the certificate you just issued. On the next screen select "Base 64 encoded" and then download the certificate.

16. Save the certificate. Then copy the certificate to the Supercharger Manager server. Back in Personal\Certificates in MMC on the Supercharger Manager server, under Actions, click on All Tasks, then Import. Point the import to the certificate file you copied over and finish the import using default options.

17. Go to the Supercharger website in IIS under Sites. (Most likely named "Default Web Site"). Click on "Bindings" in the Actions menu. Add a binding for https.  Select the new certificate in the dropdown. Save and then you may have to restart IIS service.

This page was: Helpful | Not Helpful
Overriding global settings KerbPurge 101