Enabling SSL (https/tls) for your Edge Server

This guide covers how to enabling SSL to enable your Soltra Edge server to communicate using Hypertext Transfer Protocol over Secure Socket Layer(https)

Generating the Private Key

  • Logon as Admin and browse to Admin, SSL, Manage SSL
  • Generate the private key pair
  • Click on Generate Key under Private Key-pair (KEY)
  • Replace the default data with your organizational information and click Create Request Your Certificate Signing Request (CSR) is now automatically generated.
    • If you wish to submit this to a Certificate Authority use this CSR to initiate your request.
Edge SSL Tab

Submission to a Certificate Authority (CA)

note: skip this step if you plan to use a Self-Signed Certificate

There are several SSL Signing Authorities, here are three of the top names

There are several options available, however, a single 2048-Bit Single Name SSL Certificate should meet the needs of the Soltra Edge install

Alternatively, Soltra Edge can be secured using a Self-Signed certificate

note: use of self-signed certs can cause an SSL untrusted site warning on browser connection (see below)
  • If securing Soltra Edge with a Self-Signed Certificate, click Generate Certificate (Self-Signed)

Applying Your Certificate

  • Paste the Certificate supplied by the CA and click Upload Certificate.

    • note: if your choose Self-Signed, this step is not needed.
  • Verify your Certificate information.

    • If the certificate is self-signed, you will see an indicator in bold just above the certificate viewing window.

      self-signed notice

      self-signed notice

    • Once you have confirmed the certificate is correct, toggle Saved Setting to Enabled then click the blue Update Settings box, Finally Restart HTTP Service and the red Restart HTTP Service

      {TODO: Need new Image (wrong size)} certificate paste

      {TODO: Need new Image (wrong size)} http service restart

  • The GUI will indicate that HTTP is restarting

  • You will be redirected to port 443 and SSL should now be enforced. The web URL will now reflect https://

    note: If you used a self-signed certificate, you will get an untrusted certificate warning. This is standard with any self-signed cert and most modern browsers and can safely be ignored.

    {TODO: Need new Image (wrong size)} unsigned warning