For a list of the encryption algorithms EnterWorks can be configured to support, see:
Supported Security
Specifications.
Configuring EnterWorks to use SSL does not configure RabbitMQ to use SSL. For
instructions on configuring RabbitMQ to use SSL, see Configure RabbitMQ for SSL/TLS.
To configure EnterWorks to use SSL:
-
Obtain valid encryption certificate files.
The customer must provide you a valid pair of encryption certificate files: a
certificate file and a key file.
Note: These files must be in PEM format and must be named as
specified below.
Store these files in the folder:
<drive>:\Enterworks\certs\ssl
-
Set the configuration parameters for
enable-web-server-service
- The
create-enable-web-server-service.cmd script should
exist in the following folder. If it does not, create
it.
<drive>:\Enterworks\enable2020\services\install
- Back up:
create-enable-web-server-service.cmd
by copying it to:
<drive>:\Enterworks\enable2020\services\install\archive\
- To facilitate troubleshooting, append the datetime to the end of the
filename of the backed up file.
- Open
create-enable-web-server-service.cmd for editing.
- If the setting
-webKeysPath doesn't exist in the
script, add it.
- Set the value of
-webKeysPath to point to the folder
holding the encryption files:
-webKeysPath=<install-drive>:\Enterworks\certs\ssl
- The default minimum version of TLS EnterWorks supports is 1.2. If you
want to change the minimum version supported, set the following flag.
The allowed vales are 1.2 and 1.3.
-minTlsVersion=
- Save the script.
-
Use the script.
-
Restart
all services.
EnterWorks is now configured for SSL.