{"type":"doc","content":[{"type":"panel","attrs":{"panelType":"info"},"content":[{"type":"paragraph","content":[{"text":"Prerequisite:","type":"text","marks":[{"type":"strong"},{"type":"em"}]},{"text":" ","type":"text","marks":[{"type":"em"}]},{"text":"Ensure your certificate is generated with the MAC option for your SSL certificate.","type":"text"}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Option 1: Using an Existing IIS PFX Certificate (RECOMMENDED)","type":"text"}]},{"type":"orderedList","attrs":{"order":1},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Export the certificate from IIS:","type":"text"},{"type":"hardBreak"},{"text":"a. From your Start menu, open “","type":"text"},{"text":"Internet Information Services (IIS) Manager","type":"text","marks":[{"type":"strong"}]},{"text":"”","type":"text","marks":[{"type":"em"}]},{"type":"hardBreak"},{"text":"b. Click on the server name in the \"","type":"text"},{"text":"Connections","type":"text","marks":[{"type":"strong"}]},{"text":"\" pane (located left-hand side) ","type":"text"},{"type":"hardBreak"},{"text":"c. In the middle pane, double-click \"","type":"text"},{"text":"Server Certificates","type":"text","marks":[{"type":"strong"}]},{"text":"\" (under IIS section)","type":"text"},{"type":"hardBreak"},{"text":"d. Select the certificate you want to export","type":"text"},{"type":"hardBreak"},{"text":"e. Click \"","type":"text"},{"text":"Export","type":"text","marks":[{"type":"strong"}]},{"text":"\" in the \"","type":"text"},{"text":"Actions","type":"text","marks":[{"type":"strong"}]},{"text":"\" pane (located on the right-hand side)","type":"text"},{"type":"hardBreak"},{"text":"f. Follow the wizard to export the certificate as a .pfx file (","type":"text"},{"text":"Note","type":"text","marks":[{"type":"em"}]},{"text":": remember the passphrase you specified to protect the cert)","type":"text"},{"type":"hardBreak"},{"text":"g. Export the PFX to your GEO Jobe product’s main folder","type":"text"},{"type":"hardBreak"},{"text":"(Note: if you don’t have an export option you may need to re-import the certificate to IIS with the allow export option)","type":"text","marks":[{"type":"em"}]}]}]}]},{"type":"paragraph"},{"type":"orderedList","attrs":{"order":2},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Open the command prompt and navigate to the Admin Tools 2.0 main directory and insert:","type":"text"}]}]}]},{"type":"codeBlock","content":[{"text":"index pfx ","type":"text"}]},{"type":"paragraph","marks":[{"type":"indentation","attrs":{"level":1}}],"content":[{"text":"(","type":"text","marks":[{"type":"em"}]},{"text":"Note:","type":"text","marks":[{"type":"strong"},{"type":"em"}]},{"text":" This will save the passphrase as an encrypted string in the MongoDB database.)","type":"text","marks":[{"type":"em"}]}]},{"type":"paragraph","content":[{"text":" ","type":"text"}]},{"type":"orderedList","attrs":{"order":3},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"In the product’s main application directory, locate the ","type":"text"},{"text":"config/nodeconfig.json","type":"text","marks":[{"type":"code"}]},{"text":" and make the following modifications in the JSON file:","type":"text"}]},{"type":"codeBlock","content":[{"text":"\"useHTTPS\": true, \n\"certs\": {\n \"certificate\": \"\",\n \"key\": \"\",\n \"pfx\": \"ADD PFX FILE NAME HERE\" --> example: \"pfxCert.pfx\"\n },","type":"text"}]}]}]},{"type":"paragraph","marks":[{"type":"indentation","attrs":{"level":1}}],"content":[{"text":"(","type":"text","marks":[{"type":"em"}]},{"text":"Note:","type":"text","marks":[{"type":"strong"},{"type":"em"}]},{"text":" If you are using an absolute path in your ","type":"text","marks":[{"type":"em"}]},{"text":"nodeconfig.json","type":"text","marks":[{"type":"code"}]},{"text":", be sure to use double backslashes, such as ","type":"text","marks":[{"type":"em"}]},{"text":"\"C:\\\\BackupMyOrg\\\\Certificates\\certificate.pem\" ","type":"text","marks":[{"type":"code"}]},{"text":"or ","type":"text","marks":[{"type":"em"}]},{"text":"\"C:\\\\CleanMyOrg\\\\Certificates\\certificate.pem\"","type":"text","marks":[{"type":"code"}]},{"text":". Please also ensure that the name of your PFX file is added to the “pfx” property. An example is shown above.)","type":"text","marks":[{"type":"em"}]}]},{"type":"paragraph","content":[{"text":" ","type":"text"}]},{"type":"orderedList","attrs":{"order":4},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Restart your Admin Tools 2.0 service","type":"text"}]},{"type":"orderedList","attrs":{"order":1},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Then, load ","type":"text"},{"text":"https://localhost:9181","type":"text","marks":[{"type":"code"}]},{"text":" or ","type":"text"},{"text":"https://yourwebdomain:9181","type":"text","marks":[{"type":"code"}]},{"text":" ","type":"text"}]}]}]}]}]},{"type":"paragraph"},{"type":"orderedList","attrs":{"order":5},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Finally, complete the configuration process by following the steps for “","type":"text"},{"text":"Finalizing Configuration for your HTTPS Certificate","type":"text","marks":[{"type":"link","attrs":{"href":"https://geo-jobe.atlassian.net/wiki/spaces/GJKBASE/pages/3255107592/Configuring+Admin+Tools+to+Run+as+HTTPS#Finalizing-Configuration-for-your-HTTPS-Certificate-(for-All-Options-Above)"}}]},{"text":"” (located in this article).","type":"text"}]}]}]},{"type":"rule"},{"type":"heading","attrs":{"level":2},"content":[{"text":"Option 2: Using a key and pem file ","type":"text"}]},{"type":"orderedList","attrs":{"order":1},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Both a certificate and key .pem file are required. (","type":"text"},{"text":"If you need to generate these, you can do so by downloading OpenSSL at: ","type":"text","marks":[{"type":"em"}]},{"text":"https://slproweb.com/download/Win64OpenSSL_Light-3_4_1.msi","type":"text","marks":[{"type":"em"},{"type":"link","attrs":{"href":"https://slproweb.com/download/Win64OpenSSL_Light-3_4_1.msi"}}]}]}]}]},{"type":"paragraph"},{"type":"orderedList","attrs":{"order":2},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Open the command prompt in Windows.","type":"text"}]}]}]},{"type":"paragraph"},{"type":"orderedList","attrs":{"order":3},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Run the following commands to generate your private key and public certificate:","type":"text"}]}]}]},{"type":"codeBlock","content":[{"text":"openssl req -newkey rsa:2048 -nodes -keyout key.pem -x509 -days 365 -out certificate.pem\nopenssl x509 -text -noout -in certificate.pem","type":"text"}]},{"type":"paragraph"},{"type":"orderedList","attrs":{"order":4},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Once you have the cert and key files, copy them to your ","type":"text"},{"text":"Admin Tools","type":"text","marks":[{"type":"strong"}]},{"text":" folder.","type":"text"}]}]}]},{"type":"paragraph"},{"type":"orderedList","attrs":{"order":5},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Edit the ","type":"text"},{"text":"config/nodeconfig.json","type":"text","marks":[{"type":"code"}]},{"text":" file and make the following modifications:","type":"text"}]}]}]},{"type":"codeBlock","content":[{"text":"“useHTTPS”: true,\n“certificate”: ,\n“key”: ","type":"text"}]},{"type":"paragraph"},{"type":"orderedList","attrs":{"order":6},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Restart your Admin Tools 2.0 service.","type":"text"}]},{"type":"orderedList","attrs":{"order":1},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Then, load ","type":"text"},{"text":"https://localhost:9181","type":"text","marks":[{"type":"code"}]},{"text":" or ","type":"text"},{"text":"https://yourwebdomain:9181","type":"text","marks":[{"type":"code"}]}]}]}]}]}]},{"type":"paragraph"},{"type":"orderedList","attrs":{"order":7},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Finally, complete the configuration process by following the steps for “","type":"text"},{"text":"Finalizing Configuration for your HTTPS Certificate","type":"text","marks":[{"type":"link","attrs":{"href":"https://geo-jobe.atlassian.net/wiki/spaces/GJKBASE/pages/3255107592/Configuring+Admin+Tools+to+Run+as+HTTPS#Finalizing-Configuration-for-your-HTTPS-Certificate-(for-All-Options-Above)"}}]},{"text":"” (located in this article).","type":"text"}]}]}]},{"type":"paragraph"},{"type":"panel","attrs":{"panelType":"info"},"content":[{"type":"heading","attrs":{"level":3},"content":[{"text":"See A \"Not Secure\" Warning On Your Browser?","type":"text"}]},{"type":"paragraph","content":[{"text":"If you have created a self-signed certificate, those will always appear as not trusted.","type":"text"}]},{"type":"paragraph","content":[{"text":"You will need to buy a certificate from a trusted source (such as Verisign) to have a signed certificate from an authority.","type":"text"}]},{"type":"paragraph"},{"type":"mediaSingle","attrs":{"layout":"center","width":700,"widthType":"pixel"},"content":[{"type":"media","attrs":{"width":963,"alt":"10.18.2024 4.png","id":"b67d2c8b-567d-40f6-bb4b-e9e37413d8b8","collection":"contentId-3255107592","type":"file","height":166}}]},{"type":"paragraph"}]},{"type":"paragraph"},{"type":"rule"},{"type":"heading","attrs":{"level":2},"content":[{"text":"Option 3: Convert an existing IIS Certificate into a key/pem ","type":"text","marks":[{"type":"strong"}]}]},{"type":"paragraph","content":[{"text":"To convert an IIS certificate to a .key and .pem format for use in Admin Tools 2.0 you can follow these steps:","type":"text"}]},{"type":"orderedList","attrs":{"order":1},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Export the certificate from IIS:","type":"text"},{"type":"hardBreak"},{"text":"a. From your Start menu, open “","type":"text"},{"text":"Internet Information Services (IIS) Manager","type":"text","marks":[{"type":"strong"}]},{"text":"”","type":"text","marks":[{"type":"em"}]},{"type":"hardBreak"},{"text":"b. Click on the server name in the \"","type":"text"},{"text":"Connections","type":"text","marks":[{"type":"strong"}]},{"text":"\" pane (located on the left-hand side) ","type":"text"},{"type":"hardBreak"},{"text":"c. In the middle pane, double-click on \"","type":"text"},{"text":"Server Certificates","type":"text","marks":[{"type":"strong"}]},{"text":"\"","type":"text"},{"type":"hardBreak"},{"text":"d. Select the certificate you want to export","type":"text"},{"type":"hardBreak"},{"text":"e. Click \"","type":"text"},{"text":"Export","type":"text","marks":[{"type":"strong"}]},{"text":"\" in the \"","type":"text"},{"text":"Actions","type":"text","marks":[{"type":"strong"}]},{"text":"\" pane (located on the right-hand side)","type":"text"},{"type":"hardBreak"},{"text":"f. Follow the wizard to export the certificate as a .pfx file (remember the password you specified to protect the cert)","type":"text"},{"type":"hardBreak"},{"text":"(","type":"text","marks":[{"type":"em"}]},{"text":"Note:","type":"text","marks":[{"type":"strong"},{"type":"em"}]},{"text":" if you don’t have an export option you may need to re-import the certificate to IIS with the allow export option)","type":"text","marks":[{"type":"em"}]}]}]}]},{"type":"paragraph"},{"type":"orderedList","attrs":{"order":2},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Convert the .pfx file to a .pem file using OpenSSL:","type":"text"},{"type":"hardBreak"},{"text":"a. Install OpenSSL on your computer if it is not already installed (Windows version can be found at: ","type":"text"},{"type":"inlineCard","attrs":{"url":"https://slproweb.com/products/Win32OpenSSL.html"}},{"text":" ","type":"text"},{"type":"hardBreak"},{"text":"b. Copy the .pfx file to the OpenSSL /bin folder","type":"text"},{"type":"hardBreak"},{"text":"c. Open a command prompt or terminal window","type":"text"},{"type":"hardBreak"},{"text":"d. Navigate to the OpenSSL bin directory","type":"text"},{"type":"hardBreak"},{"text":"e. Run the following command (changing exported cert name as necessary):","type":"text"}]}]}]},{"type":"codeBlock","content":[{"text":"openssl pkcs12 -in exportedCert.pfx -out yourcert.pem -nodes","type":"text"}]},{"type":"paragraph","content":[{"text":"This command will prompt you for the password you used to protect the .pfx file. Enter the password and press Enter. The command will create a .pem file in the same directory as the .pfx file.","type":"text"}]},{"type":"paragraph","content":[{"text":" ","type":"text"}]},{"type":"orderedList","attrs":{"order":3},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Extract the private key from the .pem file using OpenSSL:","type":"text"},{"type":"hardBreak"},{"text":"a. Run the following command in the same directory where the .pem file is saved:","type":"text"}]}]}]},{"type":"codeBlock","content":[{"text":"openssl rsa -in yourcert.pem -out yourkey.key","type":"text"}]},{"type":"paragraph","marks":[{"type":"indentation","attrs":{"level":1}}],"content":[{"text":"b. This command will extract the private key from the .pem file and save it as a separate .key file in the same directory.","type":"text"}]},{"type":"paragraph","content":[{"text":" ","type":"text"}]},{"type":"orderedList","attrs":{"order":4},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Copy the .pem and .key to the application directory and configure ","type":"text"},{"text":"config/nodeconfig.json","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":"a. Copy the new .pem and .key file to your application root directory","type":"text"},{"type":"hardBreak"},{"text":"b. Open ","type":"text"},{"text":"\\config\\nodeconfig.json","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":"c. Modify the settings as follows (changing names as necessary):","type":"text"}]}]}]},{"type":"codeBlock","content":[{"text":"\"useHTTPS\": true,\n \"certs\": {\n \"certificate\": \"yourcert.pem\",\n \"key\": \"yourkey.key\"\n },","type":"text"}]},{"type":"paragraph","content":[{"text":" ","type":"text"}]},{"type":"orderedList","attrs":{"order":5},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Restart the Admin Tools server, and open the browser using the HTTPS location.","type":"text"}]}]}]},{"type":"paragraph"},{"type":"orderedList","attrs":{"order":6},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Finally, complete the configuration process by following the steps for “","type":"text"},{"text":"Finalizing Configuration for your HTTPS Certificate","type":"text","marks":[{"type":"link","attrs":{"href":"https://geo-jobe.atlassian.net/wiki/spaces/GJKBASE/pages/3255107592/Configuring+Admin+Tools+to+Run+as+HTTPS#Finalizing-Configuration-for-your-HTTPS-Certificate-(for-All-Options-Above)"}}]},{"text":"” (located in this article).","type":"text"}]}]}]},{"type":"rule"},{"type":"heading","attrs":{"level":2},"content":[{"text":"Finalizing Configuration for your HTTPS Certificate (Required for All Options Above)","type":"text","marks":[{"type":"strong"}]}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"It is important to properly specify what configuration type that is being used for your Admin Tools certificate and nullify (or provide empty values) to other certificate properties. Improper specification of the certification type may cause complications when running Admin Tools. ","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Under ","type":"text"},{"text":"nodeconfig.json","type":"text","marks":[{"type":"code"}]},{"text":", specify which HTTPS certificate type you will use for your environment (under ","type":"text"},{"text":"certs","type":"text","marks":[{"type":"code"}]},{"text":") and property in certs to null or empty:","type":"text"}]}]}]},{"type":"codeBlock","content":[{"text":" Example below: Using .pfx for your HTTPS certificate \n \n \"certs\": {\n \"certificate\": \"\", <-- Empty value \n \"key\": \"\", <-- Empty value\n \"pfx\": \"/cert.pfx\", <-- pfx filepath example \n \"pfximport\": \"\" <-- Empty value\n },","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"If using ","type":"text"},{"text":"certificate ","type":"text","marks":[{"type":"code"}]},{"text":"and ","type":"text"},{"text":"key","type":"text","marks":[{"type":"code"}]},{"text":", ensure that both contain filepath values while pfx and pfximport are left blank. If using ","type":"text"},{"text":"pfximport","type":"text","marks":[{"type":"code"}]},{"text":", provide filename and leave the other property values blank. ","type":"text"}]}]}]},{"type":"paragraph"},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"In ","type":"text"},{"text":"web.config","type":"text","marks":[{"type":"code"}]},{"text":" ","type":"text","marks":[{"type":"strong"}]},{"text":"file, adjust line 33 to set “https” as a secure connection:","type":"text"}]}]}]},{"type":"codeBlock","content":[{"text":"// On line 33 of web.config...\n","type":"text"}]},{"type":"paragraph"},{"type":"panel","attrs":{"panelType":"info"},"content":[{"type":"paragraph","content":[{"text":"If you encounter any issues completing these steps, please contact ","type":"text"},{"text":"support@geo-jobe.com","type":"text","marks":[{"type":"link","attrs":{"href":"mailto:support@geo-jobe.com"}}]},{"text":" for assistance. ","type":"text"}]}]},{"type":"rule"},{"type":"heading","attrs":{"level":2},"content":[{"text":"Related Articles:","type":"text"}]},{"type":"paragraph","content":[{"type":"emoji","attrs":{"id":"1f4d8","text":"📘","shortName":":blue_book:"}},{"text":" ","type":"text"},{"text":"Configuring Backup My Org to Run as HTTPS","type":"text","marks":[{"type":"link","attrs":{"href":"https://geo-jobe.atlassian.net/wiki/spaces/GJKBASE/pages/edit-v2/3256057860?draftShareId=b6a23a58-cfff-455f-8836-ecc89c06fe2f"}}]}]},{"type":"paragraph","content":[{"type":"emoji","attrs":{"id":"1f4d8","text":"📘","shortName":":blue_book:"}},{"text":" ","type":"text"},{"text":"Configuring Clean My Org to Run as HTTPS","type":"text","marks":[{"type":"link","attrs":{"href":"https://geo-jobe.atlassian.net/wiki/spaces/GJKBASE/pages/edit-v2/3255959560?draftShareId=b0dc6d01-49ac-4232-9235-d57459a9c76b"}}]}]}],"version":1}

Browser not supported