Minimum software versions required for HTTPS
|
Component |
Minimum Version |
|---|---|
|
DPE Server |
1.7.193
|
Create a self-signed certificate on the DPE Server machine
Note: This is not needed in a productive environment, only for testing. Use an officially signed certificate in productive environments.
|
Step |
Description |
|---|---|
|
1 |
Open IIS Management, select machine and double-click on Server Certificates: |
|
2 |
Click on Create self-signed certificate: |
|
3 |
Enter a name for your certificate and choose a storage (Personal or Webhosting). The key difference between Web Hosting store and Personal store is that Web Hosting store is designed to scale to higher numbers of certificates. |
Enable HTTPS for the DPE Server web site
|
Step |
Description |
|---|---|
|
1 |
Open IIS Management and click Bindings for your web site: |
|
2 |
Add a binding for HTTPS and select your certificate: |
Adapt web.config for DPE web services (WCF/SOAP)
|
|
|
|---|---|
|
|
Add a security tag for the default basicHttpBinding: XML
instead of XML
|
Adapt web.config for DPE web services (WCF/REST)
|
|
|
|---|---|
|
|
Add a security tag for the default webHttpBinding: XML
instead of XML
|
|
|
|
Adapt httpGetEnable / httpsGetEnabled in web.config
|
|
|
|---|---|
|
|
In case of HTTPS the option httpGetEnabled must be set to "false" XML
instead of XML
|
FAQ
|
Id |
Question |
Answer |
|---|---|---|
|
1 |
The browser shows a name mismatch error? |
https://www.digicert.com/ssl-support/certificate-name-mismatch-error.htm |
|
2 |
Can I use the same certificate for different servers? |
There are different types of certificates. Some are signed for a single dedicated server name. Some can be used for multiple names. |
|
3 |
Can I sign a certificate for a DNS name and use it for whatever physical machine is mapped to this name? |
TODO
I hope so, but we have to learn more... |
|
4 |
What is the difference between Personal or Webhosting storage? |
The key difference between Web Hosting store and Personal store is that Web Hosting store is designed to scale to higher numbers of certificates. |
|
5 |
Which types of certificates exist? |
https://support.dnsimple.com/articles/ssl-certificates/#traditional-singlename |