SSL Configuration
ManageEngine Exchange Reporter Plus supports SSL connections to ensure security of data transferred between the browser and the product server.
Steps to apply the SSL certificate
To generate and apply a SSL certificate, navigate to Settings → Admin → General Settings → Product Settings→Connection → SSL Certification Tool
- If you don’t have a SSL certificate, select Generate Certificate option and follow the steps here.
- If you already have a SSL certificate, select Apply Certificate option and follow the steps here.
Generate certificate
- In the Common Name field, enter the name of the server.
Example: For the URL https://servername:9251, the common name is servername.
- In the SAN Names field, enter the additional host names, if any, for a single SSL certificate. Multiple values can be added by using a comma to separate them.
- In the Organizational Unit field, enter the name of the department that you want to display in the certificate.
- In the Organization field, enter the legal name of your organization.
- In the City field, enter the name of the city as provided in your organization's registered address.
- In the State/Province field, enter the name of the state or province as provided in your organization's registered address.
- In the Country Code field, enter the two letter code of the country where your organization is located.
- In the Password field, enter a password that consists of at least six characters to secure the keystore.
- In the Validity (In Days) field, specify the number of days for which the SSL certificate will be considered valid.
Note: When no value is entered, the certificate will be considered to be valid for 90 days.
- In the Public Key Length (In Bits) field, specify the size of the public key.
Note: The default value is 2,048 bits and its value can only be incremented in multiples of 64.
- After all the values have been entered, you can select either of these two options:
- Generate CSR
This method allows you to generate the CSR file and submit it to your CA. Using this file, your CA will generate a custom certificate for your server.
- Click Download CSR or manually get it by going to the <Install_dir>\Certificates folder.
- Once you have received the certificate files from your CA, follow the steps listed under Apply Certificate to apply the SSL certificate.
- Generate & Apply Self-signed Certificate
This option allows you to create a self-signed certificate and apply it instantly in the product. However, self-signed SSL certificates come with a drawback. Anyone accessing the product secured with a self-signed SSL certificate will be shown a warning telling them that the website is not trusted, which may cause concern.
If you want to go ahead and apply the self-signed certificate, follow the steps given below:
- Click Apply Self-Signed Certificate.
- Once you get the message that SSL certificate has been successfully applied, restart the product for the changes to take effect.
Apply Certificate
If you already have a SSL certificate, follow the steps listed below to apply it.
- Select Apply certificate.
- Choose an upload option based on the certificate file type.
Note: Only Triple DES encrypted private keys are currently supported.
- ZIP Upload:
- If your CA has sent you a ZIP file, then select ZIP Upload, and upload the file.
- If your CA has sent you individual certificate files - user, intermediary, and root certificates, you can put all these certificate files in a ZIP file and upload it.
- If your private key is password protected, you are required to enter your private key password in the Private Key Passphrase field.
- Individual Certificates:
- If your CA has sent you just one certificate file (PFX or PEM format), then select the individual certificate and upload the file.
- Upload the additional certificate files provided by your CA in the Upload CA Bundle field.
- In case your certificate file is password protected, you are required to enter the password for it in the Certificate Password field.
- Certificate Content:
- If your CA has sent just the certificate content, then choose the Certificate Content option, and paste the entire content in the Paste Certificate Content field.
- If the certificate contains a password-protected private key, enter the password in the Private Key Passphrase field.
- Click Apply.
- Restart the product for the changes to take effect.