Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
admin:server_installation_3 [2023/07/24 11:01] – [Installing mSupply Client] Ujwal Khatry | admin:server_installation_3 [2023/08/02 00:31] (current) – [SSL Certificate] Mark Glover | ||
---|---|---|---|
Line 176: | Line 176: | ||
=== Configure cache === | === Configure cache === | ||
- | **Edit** > **Database | + | **Edit** > **Settings** > **User settings for Data file** |
{{ : | {{ : | ||
Line 277: | Line 277: | ||
==== SSL Certificate ==== | ==== SSL Certificate ==== | ||
- | The mSupply server also has a webserver as mentioned | + | The mSupply server also has a webserver as mentioned |
- | It is recommended that a public facing web server should have an SSL certificate installed. For the mSupply server a ' | + | It is recommended that a public facing web server should have an SSL certificate installed. For the mSupply server a ' |
Theses files needs to be stored inside the folder C:\Program Files\mSupply\mSupply Server\Server Database | Theses files needs to be stored inside the folder C:\Program Files\mSupply\mSupply Server\Server Database | ||
Line 285: | Line 285: | ||
{{ : | {{ : | ||
- | + | The cert.pem file contains the certificate in the following format and can have the root as well as the intermediate certificate. | |
+ | < | ||
+ | -----BEGIN CERTIFICATE----- | ||
+ | MIIGUzCCBTugAwIBAgIRAP9nsdfsfdsdfYH0oEZgg3k28WUoYQgQwDQYJKoZIhvc | ||
+ | gY8xCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO | ||
+ | BgNVBAcTB1NhbGZvcassdsdmQxGDAWBgNVBAoTsdfsD1NlY3RpZ28gTGltaXRlZD | ||
+ | AxMuU2VjdGlnbyBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBD | ||
+ | QTAeFw0yMzA2MTYwMDAwMdsadsdDBaFw0yNDA2MTUyMzU5NTlaMCExHzAdBgNVB | ||
+ | Junk | ||
+ | -----END CERTIFICATE----- | ||
+ | -----BEGIN CERTIFICATE----- | ||
+ | MIIGEzdddhuyuyuyuCCA/ | ||
+ | iDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0pl | ||
+ | cnNleSBDaXR5MR4wHAYDVQQKExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxLjAsBgNV | ||
+ | BAMTJVVTRVJUcnVzdCBSU0EgQsdsd2VydGlmaWNhdGlvbiBBdXRob3JpdHkwHhc | ||
+ | MTAyMDAwMDAwWhcNMzAxMjMxMjM1OTU5WjCBjzELMAkGA1UEBhMCR0IxGzAZBgNV | ||
+ | Junk | ||
+ | -----END CERTIFICATE----- | ||
+ | </ | ||
+ | |||
+ | The the key.pem file contains | ||
+ | |||
+ | < | ||
+ | -----BEGIN PRIVATE KEY----- | ||
+ | MIIEvAIBADANBgkasasdfqhkiG9w0BhgghAQEFAASCBKYwggSiAgEAAoIBAQCqPA | ||
+ | TZB5GnFAODhHMTU+pqGD8eS6NOzWwhoyb2dvZv1w2Gh6fcprPUpATltvcMe8q+fe | ||
+ | +ITiYylKfcs2nNYyirr2sdfsdfSPGMKR277MW6G7etFCGjBH/ | ||
+ | e9oRf/ | ||
+ | CTvUxUF6Niul/ | ||
+ | iC20nTBKweefzPg4Uo9d6DdhQD7xdklD1SXlcTgEXpa0Cc/ | ||
+ | junk== | ||
+ | -----END PRIVATE KEY----- | ||
+ | </ | ||
+ | |||
+ | More recently we have moved towards using Caddy server software which setup a reverse proxy server which use Let's Encrypt to automatically update SSL certificates. This will avoid the need to manually watch and update expiring SSL | ||
==== Installing mSupply Client ==== | ==== Installing mSupply Client ==== | ||
Needed: | Needed: |