Reference Guide
...
Session Manager
HTTP Proxy

HTTP Proxy Certificate Settings

The Kron PAM HTTP Proxy produces an HTTPS certificate for all devices that use the HTTPS connection method. The default properties for the certificate authority (CA) of this certificate are listed below. If you want to use its own CA, the parameters below should be set:

  • Establish an SSH connection to the Kron PAM server with pamuser and run the following command: sudo vi /u01/http-proxy/conf/http_proxy.properties
  • Change these parameters as needed after adding a self-owned CA certificate: http.proxy.ca.cert.path=assets/ca.crt http.proxy.ca.private.key.path=assets/ca_private.der

Users must import the HTTP Proxy CA certificate to their web browser to connect to target systems. The CA certificate file is under the /u01/http-proxy/assets/ directory. It can be fetched using an SFTP client and imported to the web browsers following these steps:

Internet Explorer and Chrome: Windows Start > Internet Options > Content > Publishers > Trusted Root Publishers > Import... Firefox: Options > Privacy & Security > View Certificates... > Authorities > Import..

PREVIOUS
HTTP Proxy Logging
NEXT
Managerial Approval for User Connections to HTTP/HTTPS Devices
Docs powered by Archbee