Doors.WEB - Using Secure Sockets Layers

Doors.WEB - Using Secure Sockets Layers

It is very likely that you would want to protect their Doors.WEB™ client connections in the same way that is used when connecting to a bank's website (for online banking). This section of the help will guide you through the process of enabling Self-Signed Certificates and then using the certificate to create a Secure Socket Layer (SSL) connection to the Doors.WEB™ Server).

 

The process is the same as certificates issued by a Certification Authority, except you do not have to apply for the certificate and it does not have to be bound to a registered domain, such as myowndomain.com or kerisys.com


1.0 Important Information about Certified and Self-Signed Certificates

An SSL connection with a self-signed certificate creates an encrypted connection between the server and web browser to assure the information flowing in between can’t be intercepted or interpreted by a 3rd party. A self-signed certificate does not guarantee the server is who they claim to be.

The highest level of security is achieved with a certificate provided from a 3rd party CA (Certification Authority) such as Digicert and GlobalSign. Certificates must be registered to a domain and require the domain owner to submit an application to the CA; however, this process is not covered in this document.

 

Requirements

  • An existing installation of IIS with Doors.WEB™ (DoorsWebClient) added as a site.

  • IIS8 (Internet Information Services).
  • Windows 10 operating system.

 

2.0 Setup SSL With Certificate

  1. Open Internet Information Services (IIS) (Right-click Windows Start Menu >> Control Panel >> Administrative Tools >> Internet Information Services (IIS) Manager.

    IIS Window

  2. From the Connections list on the left, select the top connections > run the Server Certificates mode under IIS middle > Under Actions, choose Create Self-Signed Certificate.

    Run Certificates

  3. Name the certificate as DoorsWebCert > select Web Hosting as the certificate store > press OK.

    Certificate Name

  4. Apply the certificate to the site by selecting DoorsWebClient under Sites > right click and select Edit Bindings
  5. From the list, choose https on port 443 > press Edit.
  6. From the SSL certificate dropdown, choose DoorsWebCert > press OK.

    Apply Cert to Site

  7. Now every time a connection is made to the server, it can be made using a https connection, such as https://localhost (note there is no :8080 at the end).

 

3.0 Accept Self-Signed Certificates on FireFox

The first time the browser connects to the server, the user will need to authorize the self-signed certificate, this is not required for a CA issued certificate. On FireFox the following message is shown:

 

Accept Self-Signed

 

Accept the self-signed certificate by pressing Advanced >> Add Exception >> Confirm Security Exception.

 

Accept Self Signed Certificates

 


4.0 Accept Self-Signed Certificates in Microsoft Edge

In the Microsoft Edge browser, the following warning is given; select Continue to this webpage.

 

Accept and Continue - Edge

 

 

5.0 Remove HTTP Connections

The default method of connecting to Doors.NET using Doors.WEB™ is via HTTP and port 8080. However, these connections are not using SSL. To remove this port binding and discontinue connections on port 8080:
  1. Right-click Windows Start menu.
  2. Select Control Panel.
  3. Click Administrative Tools.
  4. Select Internet Information Services (IIS) Manager.
  5. Expand the tree-view on the left of the screen.
  6. Expand Sites - you should see the Doors.WEB™ site.
  7. Right click on DoorsWebClient.
  8. Choose Edit Bindings.

    Edit Bindings

  9. Select HTTP on port 8080.
  10. Click the Remove button.

    Remove HTTP and port 8080

    • Related Articles

    • Doors.WEB Security Warning

      Because the Web Client is a simplified and limited version of Doors.NET there are many functions that can only be performed using standard Doors.NET™. This warning is aimed at preventing someone from being given software access and authority beyond ...

    • Web Client Installation and User Guide

      Doors.WEB Installation guide and user manual (attached)

    • Doors.WEB Data Sheet

       Doors.WEB Data Sheet (attached)

    • Doors.WEB - Create Application Pool

      The following only needs to be done if the host PC/Server is running another web application and using the DefaultAppPool - It is an unlikely scenario but the scenario may arise. Open Internet Information Services/IIS (on a Windows 10 PC type IIS ...

    • Introduction to Doors.WEB

      This reference guide introduces you to Keri Systems new Doors.WEB™ web client. It explains the main features, functions and operation of the web client, plus pre-requisites for installation and the installation procedure itself. It can be very ...