Hello,

Does anyone know how to access the raq web interface securly ie using ssl ... I do not like the fact that my admin username and password is being transferred as pure text across the internet!

anything out there already setup or any pointers?

thanks

David

To run SSL you need a security certificate. You can purchase a security certificate from Thwate, Verisign, etc. These are good is you use SSL on the rest of your web site as they do not cause browser pop-ups and they are widely recognized as secure methods.


Raq 4 Instructions
If you do not need SSL elsewhere, you can generate your own cert in the Control Panel on a Raq4.
1.) Go to the site management section for your main (admin) domain name.

2.)Go to the SSL Settings.

3.) Scroll down to the menu and select generate self-signed certificate.

4.) Save Changes

Now, when you login to admin you will automatically be redirected to use SSL (https).


(Note: These instructions may work on other Cobalts -- I've only administered the Raq4.)

worked perfectly .... thanks a million!

Great Post. i did this too. thx.

When I had my RaQ3, I created my own cetificate (the RaQ created it for me that is) and it worked fine. The only problem is it gives you a popup message box saying that it is not signed etc. This could be good for those of you that want to access the admin area secure and do not want to pay for it.

Just a thought :erm:

yes. That is my objective to have secure web based access to the raq. Plus the pop up only happens once ... you can indicate you will accept the certificate forever (or as long as it is valid ... not sure what that is for the raqs self generated certificate)

David

You can tell Windows 2000 to trust the site/certificate, that way it will never pop up again :)

Once the pop up about the certificate shows up, click the View Details button.
Then click on "Add" I believe. Not sure.
A wizard starts up asking you for a location for the certificate file. Either use the default, or specify a directory for it.

Basically that's it, and the pop up should be no more :)

Now, can this Secure thingy be used for more then just the Admin panel?
I've got another site running webmail. Can I secure that too in this way?

For the most part, you can do this for any site, anything on the server. It just isn't the real thing...

It depends on what "real" means!

It is real enough to allow a secure connection between the browser and the raq server ... which is all I wanted to do

but for an application that thousands (or more) users will be accessing one would need a universally signed certificate from the likes of verisign, or equifax etc.

later

David

Aloha
Pnigu
I have done the same thing also think it is somethign like save certificate
good for bringing this to others attention ;)

Aloha :)
Well, I just hope I remembered correctly. If not, then at least it was a push in the right direction, hehe

It just isn't the real thing...
Nope, it's not, but it IS a real 128 bit secured channel.
I'm not talking about a self-signed certificate for, umm, how to say it?, general use. We don't host sites of others, and we don't offer webmail or such to our visitors.
It's just to give ourselves a secure channel. And for such stuff this is more then real :D

Yep, fine for that (and what it is for in your situation). :)

My certificate is not staying in my puter
think it is due to ie 6 beta
arghhhhh
OH well it is still ok better than paying

Allow me to bump up a really old but really useful thread.

I tried this, but now all the other sites on the raq also have to go trough this certificate boxes, not only the admin account.
Is this normal ?

BTW i forgot to check the SSL checkbox in the admin account and it still worked :unhappy:

Originally posted by dutchie
Allow me to bump up a really old but really useful thread.

I tried this, but now all the other sites on the raq also have to go trough this certificate boxes, not only the admin account.
Is this normal ?

BTW i forgot to check the SSL checkbox in the admin account and it still worked :unhappy:
If you mean that their control panels are secured by SSL - then it's normal.
If you mean that the actual sites themselves are in SSL then there's something wrong.

No just the control panels.

Thanks !

Originally posted by dutchie
No just the control panels.

Thanks !
You're welcome.
You might want to warn your clients about the SSL cert. being self-signed, as it can cause problems with some older browsers.