Hypertext Transfer Protocol Secure (HTTPS) combines standard HTTP with TLS/SSL protocol to provide more secure communication when browsing the Internet. Standard HTTP and HTTPS are enabled by default in clean/new installations of Address Manager. Address Manager uses a pre-configured self-signed certificate so you can access Address Manager using HTTPS right out of the box.
There are multiple ways to configure HTTPS on Address Manager:
- Users can use the pre-configured self-signed certificate enabled by default.
- Users can generate a custom self-signed certificate through Address Manager. Refer to Configuring HTTPS with a self-signed certificate for more information.
- Users can configure HTTPS with an existing custom certificate. Refer to Configuring HTTPS with an existing custom certificate for more information.
- Users can use Address Manager to generate a certificate signing request (CSR) and private key, then provide the CSR to a certificate authority (CA) to receive a signed server certificate that can be applied to Address Manager. Refer to Configuring HTTPS with a new custom certificate for more information.
- Users can reapply custom certificates when enabling/disabling HTTPS or re-authenticating replaced servers. Refer to Re-applying certificates for more information.
Note:
- HTTP service is enabled by default.
- HTTPS might be disabled for customers upgrading to Address Manager v9.4.0 who might have modified HTTPS settings in a previous version of Address Manager.
- The redirection of HTTP requests to HTTPS can only be achieved through the Address Manager user interface.
Note: Modifying HTTP or HTTPS
service requires a restart of the Address Manager
server. BlueCat recommends performing any changes
to HTTP or HTTPS service during a scheduled maintenance window
in order to avoid service outages.