Previous Topic: Create Security CertificatesNext Topic: Configure X.509 Certificate Authentication

Administering CA Configuration AutomationConfiguration SettingsCreating and Managing Security CertificatesHow to Configure CA Configuration Automation for SSL SecurityEnable HTTPS

Enable HTTPS

If you created a certificate authority, but did not enable HTTPS, you can manually enable HTTPS to create the HTTPS Certificate and secure access to the CA Configuration Automation user interface.

To enable HTTPS

  1. Click the Administration link, the Configuration tab, and then the Security Certificates link.

    The Security Certificates page appears and displays the existing certificates in the Certificates table.

  2. Review the Security Summary panel to ensure the Certificate Authority field reads Created and the HTTPS Support field reads Disabled.
  3. Select Enable HTTPS from the Table Actions drop-down list.

    You are prompted to create an HTTPS Certificate.

  4. Click OK.

    The Create HTTPS Certificate dialog appears with the following fields completed:

    Server

    Specifies the CA Configuration Automation Server host.

    Certificate Purpose

    Specifies HTTPS.

  5. Enter the following information in the corresponding field, then click OK:
    Expiration (days)

    Specifies when the HTTPS Certificate expires.
    Default: 3650

    Certificate Password

    Specifies the password for the HTTPS Certificate.

    Confirm Password

    Ensures the password was entered without error by requiring it match this entry.

    Certificate Authority Password

    Specifies the Certificate Authority password.

    The HTTPS Certificate is added to the Certificates table.

  6. Click the check box next to the HTTPS Certificate, then select Enable HTTPS from the Table Actions drop-down list.

    The Enable HTTPS dialog appears.

  7. Enter the Certificate Authority password, then click OK.

    The HTTPS Support field (in the Security Summary panel) displays Enabled (requires server restart).

  8. Stop and restart the CA Configuration Automation Server.

    HTTPS in enabled, and you need to log in to CA Configuration Automation using HTTPS rather than HTTP, for example:

    https://<CCA_Server_Name>:<port_number>