HomeUsing LincDoc 3.1+LWSA (LincWare System Administration) PortalUsing SSL Certificates

4.3. Using SSL Certificates

LincDoc requires the use of SSL certificates in order to ensure the security of data being transferred between web browsers and the server back end. The process begins by logging in to LWSA (using the web portal, and not through the system console), and generating a certificate signing request (CSR).

  1. Open a browser and log in to LWSA.
  2. Click the SSL Certificate Signing Requests tab.
  3. Click the create button.
  4. The Create new certificate signing request dialog box appears. Populate all of the fields as needed for your organization. For the signature algorithm, just use the default value if you are not sure.
  5. Click generate CSR.
  6. Click SAVE.
  7. Cilck show CSR, and copy the displayed information (CTRL-C).
  8. Paste the CSR into your SSL provider's application form, and proceed through their application process. The certificate must be compatible with the Apache web server running on Linux. Refer to your SSL provider to confirm this fact.
  9. At this point, your SSL provider should have provided you with the SSL certificate; open it in notepad and copy it.
  10. Return to LWSA, and click the SSL Certificate Signing Requests tab.
  11. From the displayed list, select your original CSR.
  12. Paste the SSL certificate into the text box set SSL certificate for this CSR. Optional: paste one or more CA certificates (in any order) into the text box set CA certificate chain/bundle for the above SSL cert. Refer to your SSL provider for details. Note: sometimes these CA certificate(s) are referred to as a "chain" or "bundle" file.
     
  13. Click SAVE.
  14. Click the Application Contexts tab.
  15. Click edit settings for Apache virtual hosts.
  16. Verify that the uses SSL? checkbox is selected.
  17. Click apply SSL cert from CSR, and select the appropriate CSR.
  18. When complete, your dialog box should appear similar to the following example. Note: custom Apache VirtualHost statements and link to existing VirtualHost? are advanced options and should only be used under guidance from LincWare staff.
     
  19. As the example above demonstrates, verify the following:
    • The enabled check box is selected.
    • A single asterisk ( * ) is used in the virtual host IP address text box.
    • The port number is set to 443.
    • The add "Listen" directive for port? check box is NOT checked.
  20. Click check configuration to verify that your settings are configured correctly.
  21. Close the Apache virtual hosts dialog, and click SAVE.
  22. Go to the services tab.
  23. Click the appropriate button to restart Apache.
  24. Open a browser and navigate to the following URL:
    https://yourLincDocSystem/lincdoc/
    You should see a login page, and no warnings about a browser security issue.
    The SSL certificate is now installed and working properly.

Using a self signed SSL certificate

Follow the above steps beginning from #14, but in step #17 instead of clicking apply SSL cert from CSR, use create test SSL certificate. This certificate is for testing only, and is not supported in production environments in any way.

Knowledge Tags
SSL  / 

This page was: Helpful | Not Helpful
27.3. Creating an Email Template