x Want to participate? Join the group to interact
  • State Suggested Answer
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 138 subscribers
  • Views 268 views
  • Users 0 members are here
Browse Forums
Announcements
237
topics
29
replies
General Discussion
5k
topics
13k
replies
Sage Data & Analytics
56
topics
95
replies
Sage Enterprise Intelligence
210
topics
416
replies
Sage Intelligence Reporting
121
topics
322
replies
SergeB

Automate SSL certificate import

SUGGESTED
Posted By

Is anyone automating the installation of a SSL cert for X3? 

For years we have been using the cert import via X3 UI but this becomes tedious. Most of our apache, tomcat, and IIS web servers are getting lets encrypt certs via win-acme on an automated schedule. It's only our X3 instances that we have to manually update via the UI. Has anyone figured out how to automate the cert import via syracuse? 

We have a simple x3 setup with all components installed onto the same server. 

And help would be appreciated.

  • 0
    SUGGESTED

    I provide a dedicated Web Server's Reverse Proxy / Load Balancer at the front to do the SSL termination for me when request are coming in from the Internet.

    Then, it is passed in HTTP to the Syracuse or Syracuse cluster or any web-facing add-ons such as SEI to work on the request.

    I have spent a year during covid lockdown period to try to do it through MongoDB scripting to update the internal certificate hash and file-level overwriting the certificate but that is unreliable, high-effort work, and requires web server downtime to use the new certificate that it is probably cheaper to host a dedicated small server instead for it.

  • 0 in reply to chunheng

    Hi,

    Thanks for that info. Agreed that a reverse proxy would be a better solution.

*Community Hub is the new name for Sage City