Installing .PFX Certificate

     

    .PFX is an extension for security certificate. It defines a file format that stores private keys (generated by your server at the time the CSR was generated) and public key certificate (your SSL Certificate provided by the CA) in a single encrypted file.

     

    To install a certificate with the extension .PFX,

    • Stop ManageEngine ServiceDesk Plus MSP service.

    • Copy the .pfx file to the location

    • C:\ManageEngine\ServiceDesk\conf (where C: is the drive in which ServiceDesk Plus MSP is installed)


    • In versions below 9400, the copying location is C:\ManageEngine\ServiceDesk\server\default\conf

    • Change the web server port to 443 to run ServiceDesk Plus MSP on secure mode. To change the web server port, open the command prompt and go to [ServiceDesk Plus MSP Home]\bin. Enter the command as given below,

      [ServiceDesk Plus MSP Home]\bin> changewebserverport.bat 443 https

    • Go to the location

       [ServiceDesk Plus MSP Home]\conf and open the file 'server.xml' in a word pad.


    • In versions below 9400, server.xml is present under the location  [ServiceDesk Plus MSP Home]\server\default\deploy\jbossweb-tomcat50.sar

     

    • Locate the below entries in the file.

    <!-- SSL/TLS Connector configuration using the admin devl guide keystore
          <Connector port="8443" address="${jboss.bind.address}"
               maxThreads="100" minSpareThreads="5" maxSpareThreads="15"
               scheme="https" secure="true" clientAuth="false"
               keystoreFile="${jboss.server.home.dir}/conf/sdp.keystore"
               keystorePass="sdpsecured" sslProtocol = "TLS" />

    • Please replace the file name sdp.keystore with the pfx file name (name.pfx) and enter the keystoreType="pkcs12" after the file name. Also replace the 'sdpsecured' with the password for the .pfx file.

    • The entries should look like this,

    <!-- SSL/TLS Connector configuration using the admin devl guide keystore
          <Connector port="8443" address="${jboss.bind.address}"
                 maxThreads="100" minSpareThreads="5" maxSpareThreads="15"
    scheme="https" secure="true" clientAuth="false"
    keystoreFile="${jboss.server.home.dir}/conf/name.pfx" keystoreType="pkcs12"  keystorePass="your password" sslProtocol = "TLS" />

    • Restart ManageEngine ServiceDesk Plus MSP service.

    Copyright © 2017, ZOHO Corp. All Rights Reserved.