Install a TLS certificate
- Obtain certificate files from a preferred TLS vendor: public key, private key, intermediate certificate, and root certificate.
- On the Halon node, make sure that the system is in a known state; no undeployed changes.
- Click on Configuration -> Global -> Certificates and keys.
- Keep any existing certificate/key pair.
- Click on the + Add button.
- Select Type: X.509 and private key.
- In the X.509 and private key box, insert the keys and certificates in the following order:
public key
private key
intermediate certificate
root certificate - Enter a descriptive text in the Comment box.
- Click on the Save button.
Assign a TLS certificate to an SMTP listener
- On the Halon node, make sure that the system is in a known state; no undeployed changes.
- Click on Configuration -> Server -> Listeners.
- Click on the SMTP listener to be assigned to a TLS certificate.
- Under TLS, STARTTLS, select the desired TLS certificate in the drop-down list under Certificate.
- Click on the Save button.
- Deploy the working copy to apply the new configuration, or use Live staging to test and verify the certificate before deployment.
Assign a TLS certificate to an HTTPS listener
- Obtain certificate files from a preferred TLS vendor: public key, private key, intermediate certificate, and root certificate.
- On the Halon node, make sure that the system is in a known state; no undeployed changes.
- Click on Hosts -> Services -> Web admin.
- Under Host selector, click on the host on which an HTTP listener is to be assigned to a TLS certificate.
- Click on the HTTPS listener to be assigned to a TLS certificate.
- In the TLS (HTTPS) box, replace the keys and certificates by inserting the new set in the following order:
public key
private key
intermediate certificate
root certificate - Click on the Save and apply button.
Note that, if using clustering over HTTPS, when replacing a HTTPS TLS certificate in a Halon node, the communication between this node and any other Halon node in the cluster will be disconnected. Each Halon node in the cluster must be updated with the MD5 TLS fingerprint value, obtained from the new HTTPS TLS certificate, under Hosts -> Cluster.
Install a TLS certificate to the FTPS service
- Obtain certificate files from a preferred TLS vendor: public key, private key, intermediate certificate, and root certificate.
- On the Halon node, make sure that the system is in a known state; no undeployed changes.
- Click on Hosts -> Services -> FTP server.
- Under TLS (FTPS), tick the Enable box.
- In the TLS (FTPS) box, insert the keys and certificates in the following order:
public key
private key
intermediate certificate
root certificate - Click on the Save and apply button.
Comments
0 comments
Article is closed for comments.