Using a Local Certificate to Establish a Secure HTTP Web-Browser Session

An HTTPS connection is created between an end user (web browser) and the CMP system by passing a predefined certificate to the end user.

Establishing a Secure Session
Note: Web browsers function differently based on their configuration. Review your browser settings before using SSL certificates.
Note: For more information, refer to Creating a Self-signed Certificate and Configuring Firewall Settings.

To force end users to establish an HTTPS session with the CMP system:

  1. Exchange and import SSL certificates between the CMP server and the workstation.
  2. Enable the firewall on the CMP server.
  3. Enable prefer custom.
  4. Create two customized firewall rules (one for port 80 and one for port 8080) where the allowed host is 0.0.0.0/32.

    Note: Because the ports 80 and 8080 conflict with the factory rule that allows anyone access to these ports, using the prefer custom option discards this rule, and instead uses the custom rule which allows only 0.0.0.0 to connect via 80 or 8080, which locks down the unencrypted HTTP ports.