SSL configuration for Log360 MSSP
Log360 MSSP supports SSL connection to ensure security of data transferred between the browser and the Log360 MSSP server.
Steps to apply SSL certificate and enable HTTPS
Let’s see how to generate and apply a SSL certificate for Log360 MSSP and its integrated clients.
Note:
- SSL Certificate can be applied to Log360 MSSP and its Log360 clients from Log360 MSSP and does not extend to client's child components.
- SSL Certificate can be applied to client's child components from respective client Log360.
- Navigate to Settings → General Settings → SSL Certification Tool.
Apply Certificate
If you already have a SSL certificate, follow the steps listed below to apply it.
Generate Certificate
If you don’t have a SSL certificate, select the Generate Certificate option and follow the steps here.
- In the Common Name field, enter the name of the server.
Example: For the URL https://servername:9251, the common name is servername.
- In the Organizational Unit field, enter the department’s name which you want to be displayed in the certificate.
- In the Organization field, enter the legal name of your organization.
- In the City field, enter the name of the city as provided in your organization’s registered address.
- In the State/Province field, enter the name of the state or province as provided in your organization’s registered address.
- In the Country Code field, enter the two letter code of the country where your organization is located.
- In the Password field, enter a password that consists of at least 6 characters to secure the keystore.
- In the Validity (In Days) field, specify the number of days for which the SSL certificate will be considered valid.
Note: When no value is entered, the certificate will be considered to be valid for 90 days.
- In the Public Key Length (In Bits) field, specify the size of the public key.
Note: The default value is 2048 bits and its value can only be incremented in multiples of 64.
- After all values have been entered, you can select either of these two options:
- Generate CSR
This method allows you to generate the CSR file and submit it to your CA. Using this file, your CA will generate a custom certificate for your server.
- Click Download CSR or manually get it by going to the <Install_dir>\Certificates folder.
- Once you have received the certificate files from your CA, follow the steps listed under Apply Certificate to apply the SSL certificate.
- Apply Self-signed Certificate
This option allows you to create a self-signed certificate and apply it instantly in the product. However, self-signed SSL certificates come with a drawback. Anyone accessing the product secured with a self-signed SSL certificate will be shown a warning telling them that the website is not trusted, which may cause concern.