Scenario 1 - Encrypted connection between the front-end web server and browser
Starting situation
Intrexx and the front-end web server are installed on the same (physical or virtual) server. In this scenario, an encrypted connection is required (only) between the front-end web server and the browser.
The certificate is added to the front-end web server.
The certificate of the web server including the certificate chain up to the certificate of the root CA is normally stored in the front-end web server. In addition, the private key, which belongs to the public key of the server certificate, is mandatory. The server cannot encrypt without it.
If the server certificate was signed by a private, i.e. not generally known CA, this must be entered in the repository of trusted CAs on the clients (computers, mobile devices, browsers, apps, etc.). Intermediate certification bodies in the certificate chain should also be included in the repositories provided for this purpose.
More information
Import the certificate into IIS (Internet Information Services)
Step-by-step guide
To import a certificate into IIS, please proceed as follows:
-
Start IIS.
-
Select "Server Certificates" on the homepage.
-
Click on "Open Feature" on the right under "Navigation".
You will now be on the overview page for server certificates. -
Click on "Import" on the right under "Navigation".
The "Import Certificate" dialog will open. -
Select your certificate file and enter the corresponding password.
-
Click on "OK".
You will be returned to the overview page for server certificates.
The imported certificate will now be shown in the list.
You have imported a certificate into IIS.
You can now add the certificate to a website in IIS.
Add a certificate to a website in IIS
Starting situation You have already created a website in IIS.
Step-by-step guide
To add a certificate to an existing website in IIS, please proceed as follows:
-
Start IIS.
-
Select the website that you would like to add the certificate to.
-
Click on "Bindings".
The "Site Bindings" dialog will open.
-
Select the corresponding binding.
-
Click on "Edit".
The "Edit Site Binding" dialog will open. -
Select the corresponding certificate under "SSL Certificate".
You have added a certificate to an existing website in IIS.
Starting situation You are creating a website in IIS.
Step-by-step guide
To add a certificate to a new website in IIS, please proceed as follows:
-
Start IIS.
-
Select the menu item "Sites" in the "Navigation" area on the left.
-
Click on "Add Website" in the "Navigation" area on the right.
The "Add Website" dialog will open. -
In the drop-down list, select "https".
The "SSL Certificate" drop-down list will now appear in the dialog. -
Select the corresponding certificate under "SSL Certificate".
You have added a certificate to a new website in IIS.
More information
Add a certificate in NGINX
The encryption specifications should be added to the configuration files "portal-intranet.conf" or "portal-internet.conf", respectively.
More information about NGINX in Intrexx is available under the following link: Configure NGINX.
General information about configuring encrypted connections in NGINX is available at the following links:
NGINX SSL Termination
Configuring HTTPS servers