Date printed: 05-04-2024 Last updated: 02-05-2014 To view our complete support knowledge base and most current version of this article visit support.timeips.com. |
316-264-1600 Information Sales Support |
The Enterprise Enhanced Security Module (IPSSEC) adds client data encryption, secure web pages, enhanced firewall protection, and custom or auto-generated SSL certificates for added network security.
Most modern web browsers now show a security warning for any site not using SSL (HTTPS) mode. To have TimeIPS operate in HTTPS mode, an SSL certificate is required.
TimeIPS can generate a self-signed certificate. This is a good way to test SSL/HTTPS without the cost/hassle of a signed certificate. For small installations where only a handful of employees access TimeIPS, this may be suitable for a permanent configuration. However, most production environments will prefer a signed certificate to avoid browser warnings and the need to manually accept the self-signed certificate on each browser.
To install a signed certificate for TimeIPS, create your own Private Key and Certificate Signing Request (CSR) using standard tools, such as "openssl" on any system you choose. Provide your CSR to a signing authority. Request your certificate in a format suitable for the Apache 2 web server. Then, provide TimeIPS with the Private Key and signed certificate. If the signing authority used requires a certificate chain, provide that to TimeIPS as well.
Using a self-signed certificate:
If you chose to Generate a new certificate it will be "self-signed." This means that web browsers will not automatically know it's a valid certificate. To continue using this, you must manually acknowledge that you trust the certificate on any browser that will access TimeIPS.
Starting with recent version of Firefox, password entry fields may show a warning if https mode is not used. To resolve this issue, either use IPSSEC and access TimeIPS via https, or disable the warning in Firefox.
To disable the warning, enter "about:config" in the url box for Firefox. A notice may appear, click to continue. Then, enter in the search box:
security.insecure_field_warning.contextual.enabled
Double-Click the "value" box and set it to "false"