eScan BlogeScan Blog    eScan WebsiteeScan Website    eScan ForumeScan Forum    eScan FeedseScan Feeds     
    
Languages:     

From eScan Wiki

(Difference between revisions)
Jump to: navigation, search
Revision as of 11:18, 28 November 2022
WikiSysop (Talk | contribs)

← Previous diff
Current revision
WikiSysop (Talk | contribs)

Line 54: Line 54:
# Copy the files ca.cer, webconsole.cer and webconsole.key from the C:\certs\ folder to the “MicroWorld\apache2\bin\ssl” folder. # Copy the files ca.cer, webconsole.cer and webconsole.key from the C:\certs\ folder to the “MicroWorld\apache2\bin\ssl” folder.
# Start the eScan-apache service. # Start the eScan-apache service.
 +
 +
 +
 +<B>For more information write to </B> [mailto:support@escanav.com support@escanav.com]

Current revision

Image:escan-g.jpg
· eScan  · MailScan  · Technologies   · Technical Info  · Security Awareness  · User Guides

eScan Webconsole on HTTPS with a valid SSL certificate

Before you begin...convert eScan webconsole from HTTP to HTTPS


After eScan console is on HTTPS follow be steps:-

Scenario: The customer wants to have eScan Webconsole on HTTPS with a valid SSL certificate (not a self-signed certificate), but has only the .pfx file for the SSL certificate, does not have the .crt/.cer and the .key files.

What we need for running our eScan Webconsole on HTTPS with a valid SSL certificate.

  1. webconsole.cer
  2. webconsole.key
  3. ca.cer file


How to extract .crt and .key files from .pfx file?

  1. Create a folder named “certs” in the C drive root and copy available .pfx to this folder Eg: yourfile.pfx
  2. Open the command prompt and go to \MicroWorld\apache2\bin folder.
  3. Run the following command to extract the certificate: openssl pkcs12 -in C:\certs\yourfile.pfx -clcerts -nokeys -out C:\certs\your_domain.crt
  4. Run the following command to extract the private key: openssl pkcs12 -in C:\certs\yourfile.pfx -nocerts -out C:\certs\enc_domain.key You will be prompted to type the import password. Ask the customer to type the password that he used to protect the keypair while creating the .pfx file. You will be prompted again to provide a new password to protect the .key file that you are creating. Store the password to your key file in a secure place to avoid misuse.
  5. Run the following command to decrypt the private key: openssl rsa -in C:\certs\enc_domain.key -out C:\certs\dec_domain.key You will be prompted to type the password. Type the password that you set in step 4 to protect the .key file.
  6. Now export the your_domain.crt to webconsole.cer. Refer below link to know how to export https://support.comodo.com/index.php?/Knowledgebase/Article/View/361/17/how-do-i-convert-crt-file-into-the-microsoft-cer-format
  7. Get the ca.crt or ca.cer file from the SSL certificate provider. If you have the ca.crt file export it to ca.cer file.
  8. Rename the dec_domain.key to webconsole.key
  9. Stop the eScan-apache service.
  10. Rename the files ca.cer, webconsole.cer and webconsole.key from the “MicroWorld\apache2\bin\ssl” folder to ca.cer_ss, webconsole.cer_ss and webconsole.key_ss respectively.
  11. Copy the files ca.cer, webconsole.cer and webconsole.key from the C:\certs\ folder to the “MicroWorld\apache2\bin\ssl” folder.
  12. Start the eScan-apache service.


For more information write to support@escanav.com


eScan Copyright © 2015 MicroWorld Technologies Inc.- AntiVirus & Content Security.       Send your feedback to solutions@escanav.com eScan Wiki

    Privacy policy  About eScan Wiki  Disclaimers   This page has been accessed 475 times.