You are using an unsupported browser. Please update your browser to the latest version on or before July 31, 2020.
close
Home > Access It! Universal.NET > How To... > Bind SSL Certificate to Port
Bind SSL Certificate to Port
print icon

Overview

When using the Access It! Universal.NET API or PSIA integration it must be necessary to secure the listening port with a SSL X.509 certificate. Information on how to obtain an SSL certificate is outside the scope of this document. Note that the use of self signed certificates is not recommended for production systems.

Software Requirements

  • Access It! Universal.NET 6.1.0.12 or greater
  • SSL X.509 Certificate installed on the Access It! Universal.NET server machine

Access It! Universal Requirements

  1. Within Access It! Universal.NET navigate to the System | Servers section
  2. Edit the Access It! Universal.NET server
  3. Select the services tab
  4. Configure the port for either PSIA or web API as needed
  5. Click Save
  6. Restart the Access It! Universal.NET services

Binding Certificate to a IP Address and Port

  1. Within Microsoft Windows open Internet Explorer
  2. Select internet Options from the Tools menu
  3. Select the Content tab
  4. Click Certificates
  5. Select the SSL Certificate to bind to a port and click View
  6. Select the Details tab
  7. Copy the value of the SSL certificates's thumbprint
  8. Click OK
  9. Close Internet Options
  10. Close Internet Explorer
  11. From an elevated command prompt enter the following command:
    netsh http add sslcert ipport=SERVERIPADDRESS:PORT certhash=SSLTHUMBPRINT appid={00000000-0000-0000-0000-000000000000}
    replace SERVERIPADDRESS with the IP address of the Access It! Universal.NET server
    replace PORT with the port configured within Access It! Universal.NET
    replace SSLTHUMBPRINT with the SSL certificate's thumbprint.
    example (netsh http add sslcert ipport=127.0.0.1:8000 certhash=0000000000003ed9cd0c315bbb6dc1c08da5e6 appid={00000000-0000-0000-0000-000000000000})

Deleting Certificate From a IP Address and Port

  1. Within Microsoft Windows open Internet Explorer
  2. Select internet Options from the Tools menu
  3. Select the Content tab
  4. Click Certificates
  5. Select the SSL Certificate to bind to a port and click View
  6. Select the Details tab
  7. Copy the value of the SSL certificates's thumbprint
  8. Click OK
  9. Close Internet Options
  10. Close Internet Explorer
  11. From an elevated command prompt enter the following command:
    Netsh http delete sslcert ipport=SERVERIPADDRESS:PORT 
    replace SERVERIPADDRESS with the IP address of the Access It! Universal.NET server
    replace PORT with the port configured within Access It! Universal.NET
    example (Netsh http delete sslcert ipport=127.0.0.1:8000)

Binding Certificate to a Hostname and Port

  1. Within Microsoft Windows open Internet Explorer
  2. Select internet Options from the Tools menu
  3. Select the Content tab
  4. Click Certificates
  5. Select the SSL Certificate to bind to a port and click View
  6. Select the Details tab
  7. Copy the value of the SSL certificates's thumbprint
  8. Click OK
  9. Close Internet Options
  10. Close Internet Explorer
  11. From an elevated command prompt enter the following command:
    netsh http add sslcert hostnameport=SERVERNAME:PORT certhash=SSLTHUMBPRINT appid={00000000-0000-0000-0000-000000000000} certstorename=MY
    replace SERVERNAME with the name of the Access It! Universal.NET server
    replace PORT with the port configured within Access It! Universal.NET
    replace SSLTHUMBPRINT with the SSL certificate's thumbprint.
    example (netsh http add sslcert hostnameport=APITEST.DOMAIN.COM:8000 certhash=0000000000003ed9cd0c315bbb6dc1c08da5e6 appid={00000000-0000-0000-0000-000000000000}) certstorename=MY

Deleting Certificate From a Hostname and Port

  1. Within Microsoft Windows open Internet Explorer
  2. Select internet Options from the Tools menu
  3. Select the Content tab
  4. Click Certificates
  5. Select the SSL Certificate to bind to a port and click View
  6. Select the Details tab
  7. Copy the value of the SSL certificates's thumbprint
  8. Click OK
  9. Close Internet Options
  10. Close Internet Explorer
  11. From an elevated command prompt enter the following command:
    Netsh http delete sslcert hostnameport=SERVERNAME:PORT 
    replace SERVERNAME with the name of the Access It! Universal.NET server
    replace PORT with the port configured within Access It! Universal.NET
    example (Netsh http delete sslcert hostnameport=APITEST.DOMAIN.COM:8000)

More Information

https://docs.microsoft.com/en-us/dotnet/framework/wcf/feature-details/how-to-configure-a-port-with-an-ssl-certificate


scroll to top icon