Managing the SSL Certificate

Top  Previous  Next

 

You can access configuration for the SSL certificate by pressing this button in the Gateway manager, available when the protocol is set to HTTPS:

 

ThinRDP_Server_Manager_Tab_General_SSLCertificate

 

An SSL certificate is an effective way to secure a website against unauthorized interception of data. At its simplest, an SSL Certificate is used to identify the website and encrypt all data flowing to and from the Certificate holder's Web site. This makes all exchanges between the site and its visitors 100 percent private.

A valid SSL certificate is included with the Thinfinity® Remote Desktop Server installation and all communications are already encrypted with the product's default certificate. You may want to create your own certificate to identify your company better.

 

Managing the SSL Certificate:

 

1. There are two ways of creating your own SSL certificate:

 

a. Create A self-signed certificate

 

b. Use A CA Certificate

 

2. Once you already have your certificate files, go to the Thinfinity® Remote Desktop Server manager "Security tab".

 

3.  Click on the "Manage Certificate" option. If it is disabled, read the following subtopic "Using Dynamic DNS and Certificate Sharing".

 

4. On this screen you should inform the location of the certificate files, as follows:

 

a. Certificate File: Inform the path to the certificate file.

b. CA File: If the certificate is issued by a unknown CA, you should inform here the pathname to the CA certificate.

c. Private Key: You should inform the pathname to the certificate private key file.

d. PassPhrase: Inform the password, if there is any, used when the private key was generated.

 

Note: The path names can be absolute (C:\MyCertPath\UserThisCert.pem) or relative to the path where Thinfinity® Remote Desktop Server is installed (\cert\UserThisCert.perm).

 

 

Using Dynamic DNS and Certificate Sharing:

 

When the "Enable Dynamic IP Address Resolution & Shared SSL Certificate" option is marked, it means that you are going to have a shared SSL Certificate provided by the https://www.thinrdp.net/ service.

In this mode, you will not be able to manage your own SSL Certificate. And for this reason the "Manage Certificate" button located on "Security Tab" will be disabled.

 

Read more:

The Default Embedded Certificate
A Self-Signed Certificate
A CA Certificate
Dynamic DNS and Certificate Sharing