When you install the Integration Server, the application generates a local self-signed certificate which is used by the server when establishing SSL connections.
To replace this certificate, complete the steps below:
You can install the certificate in one of the following ways:
certutil -importpfx [pfx file] -p [password]
Example:
certutil -importpfx -p "" cert.p12
The certificate must be installed to the storage on a local computer. The certificate will remain in the system if you remove the Integration Server.
Before removing the old certificate, you can view the parameters of its binding to Integration Server and save them. The parameters include IP:port, Certificate Hash and Application ID. They can be used to restore initial settings. To view the parameters, run the following command:
netsh http show sslcert
Example of the command execution:
SSL Certificate bindings: ------------------------- IP:port : 10.20.30.40:8078 Certificate Hash : 7b0ef176aa839536686e8484aad0a44058519662 Application ID : {e3aa9184-8518-4486-879a-2c41fd88dba3} Certificate Store Name : My Verify Client Certificate Revocation : Enabled Verify Revocation Using Cached Client Certificate Only : Disabled Usage Check : Enabled Revocation Freshness Time : 0 URL Retrieval Timeout : 0 Ctl Identifier : (null) Ctl Store Name : (null) DS Mapper Usage : Disabled Negotiate Client Certificate : Enabled IP:port : 0.0.0.0:8070 Certificate Hash : debd6c3c6180397e2c0f56ff27408a259ec59454 Application ID : {5ca18ed0-cbe9-418c-aede-f63f0324113c} Certificate Store Name : My Verify Client Certificate Revocation : Enabled Verify Revocation Using Cached Client Certificate Only : Disabled Usage Check : Enabled Revocation Freshness Time : 0 URL Retrieval Timeout : 0 Ctl Identifier : (null) Ctl Store Name : (null) DS Mapper Usage : Disabled Negotiate Client Certificate : Enabled
Run the command:
netsh http delete sslcert ipport=[iport]
netsh http delete sslcert ipport=0.0.0.0:8070
To bind the new certificate to the Integration Server port, run the following command:
netsh http add sslcert ipport=[ipport] certhash=[certificate hash] appid={c1e1e87f-1818-4ac3-897b-a8e10f790659}
Where the parameters represent:
To perform binding on all network adapters, use 0.0.0.0 for the IP address parameter. The port number must match the one specified during the installation of the Integration Server.
netsh http add sslcert ipport=0.0.0.0:8000 certhash=0000000000003ed9cd0c315bbb6dc1c08da5e6 appid={c1e1e87f-1818-4ac3-897b-a8e10f790659}
The certificate must contain a private key.
To restart the Integration Server:
The Integration Server will restart and the new certificate for the Integration Server will be installed.
Release of antivirus database updates (required to protect your computer/server/mobile device)
Providing technical support over phone / web
Release of patches for the application (addressing detected bugs)
Please let us know how we can make this website more comfortable for you
Thank you for submitting your feedback. We will review your feedback shortly.
Your feedback will be used for content improvement purposes only. If you need assistance, please contact technical support.
Your suggestions will help improve this article.
