...
This how-to guide will describe the last option of issuing self-signed certificates as the actual setup of Standard ERP is the same for all three options.
Step-by-step guide
- There are many articles on the internet describing in detail how to issue a self-signed certificate. For example, you can follow this article from heroku.com.
As a result you will get a private key e.g.
server.keyand a certificate e.g.server.crt. Move them to your Standard ERP server folder and place them in folderssl.Tip You can do that either by tools such as sftp or rsync (if you have direct access to your server) or via File Manager in mystandard.hansaworld.com
- Open Technics >> Register >> Program Mode in your Standard ERP client.
In the tab 'Web', enter the HTTPS port and add it in your firewall to the allowed IP addresses (or all the internet) and check the 'Use HTTPS' checkbox.
Tip Default port for HTTPS is 443, but any other port can be used if you prefer so. Please look at the note about setting ports below
- Enter
ssl/server.crtin the field Certificate. - Enter
ssl/server.keyin the field Private Key. - Additionally you can set other options, e.g. disabling insecure versions of HTTPS SSL 2.0, SSL 3.0 and TLS 1.0.
Restart your server and you should see something like this in your hansa.log on the server:
Code Block 2018-03-06 23:23:05 Listening on port: 1200 2018-03-06 23:23:05 Listening on port: 80 2018-03-06 23:23:05 Listening on port: 443
Note These ports might be set by the Technics > Register > Program Mode (especially if you are hosted on premises), but could be overridden also by settings in mystandard.hansaworld.com, so please check MyStandard option 'Change Server Date' to set up the right ports in that case.