/
HTTPS Access to Remedio Web UI

HTTPS Access to Remedio Web UI

This document guides you through the process of creating a certificate request and private key for the Remedio application and signing it using your organizational Certificate Authority (Root CA / Sub CA).

  1. Log in to the Remedio server using SSH (via PuTTY or terminal), on port 12222.

  2. Download the following script and copy it to Remedio App Server

  3. Run the script generate_cert_script.sh and fill in the required details as prompted

    ubuntu@gytpol-services:~$ . generate_cert_script.sh

  4. Enter the FQDN (Fully Qualified Domain Name) of the Remedio server as defined in your DNS:

    Enter DNS.1 (e.g., remedio-app.mydomain.com):

  5. Enter the same name as above, but without the domain part:

    Enter DNS.2 (e.g., remedio-app):

  6. Specify the full path where the certificate request and key files should be saved:

    Enter output directory path (e.g., /etc/ssl/certs or ./):

  7. Enter the desired name for the files that will be created

    Enter certificate file name (without extension, e.g., test.mydomain.com):

  8. In the next steps you’ll need to specify your organization’s details, as follows (examples added):

    Country Name (2 letter code): IL State or Province Name (full name) []: Israel Locality Name (eg, city) []: Tel Aviv Organization Name (eg, company) []: Your ORG name Organizational Unit Name (eg, section) []: Your server’s AD OU Common Name (eg, your name or your servers hostname) []: Your Remedio Server FQDN

  9. Navigate to the location you specified in step 6

  10. Run the command:

    cat [CertificateFileName.csr]

  11. Copy the certificate’s data:

certificate.png

  1. Log in to your Root CA / Sub CA server
    When using Sub CA make sure the Root CA certificate is published to Remedio Admins domain

  2. Open internet Explorer, and browse to http://ServerName/certsrv

    1. If Web UI is not allowed, run the following Command:

      certreq.exe -attrib "CertificateTemplate:WebServer" -submit "C:\CSRfile\Path\https.csr"

    2. Select where to save the certificate file

  3. Click “Request a certificate”

request1.png

  1. Click “advanced certificate request”

request2.png

  1. Click “Submit a certificate request…”

request3.png

  1. Fill in the relevant information as follows:

    1. Paste the certificate’s data, copied in step 6 to the marked text box

    2. Certificate Template: Web Server

    3. Click “Submit”

request4.png

  1. Select “Base 64 encoded”, and download the certificate

request5.png

  1. Save the certificate

  2. Browse to the certificate’s location and copy it to Remedio Server

  3. Run the command:

Sudo gyt add-ssl-certificate [/your/folder/location/CertFile.crt] [/your/folder/location/KeyFile.key]

  1. You can now browse to Remedio using Secured connection (HTTPS)