These instructions applied when SQLDM and Dashboard are installed on different servers and they are the continuation of the Resolving Dashboard certificate error message, which means that the Dashboard certificate was already created.
Under the Resolving Dashboard certificate error message instructions make sure that the certificate and the keystore keypair are created to have each server listed as a Common Name (). |
If you have not installed, download it, and install the application.
This scenario considers that both products are installed in different servers:
Change the directory to the bin folder where the OpenSSL was installed. For example, enter the following command to change the directory:
cd "C:\Program Files\OpenSSL-Win64\bin" |
Use the following command as an example to generate the PFX key using the private key and certificate that you previously created.
"openssl pkcs12 -export -out <file path to the new personal information exchange file>.pfx -inkey <file path path to the private key>.key -in <file path to the certificate>.cer"
openssl pkcs12 -export -out "C:\Program Files\Idera\Dashboard\WebApplication\conf\keystore.pfx" -inkey "C:\Program Files\Idera\Dashboard\WebApplication\conf\localhostone.key" -in "C:\Program Files\Idera\Dashboard\WebApplication\conf\localhostone.cer" |
Once you execute the command, you need to Enter the Export password and the verification password:
The PFX key has been created as a result of the command.
Open the Microsoft Management Console (MMC) by selecting Run from the Start menu, enter "mmc", and click OK.
Scroll-down and click Thumbprint. You need to copy the characters from the box.
If the thumbprint has extra spaces between the hexadecimal numbers, remove them. For example, the thumbprint ""a9 09 50 2d d8 2a e4 14 33 e6 f8 38 86 b0 0d 42 77 a3 2a 7b" should be edited to ""a909502dd82ae41433e6f83886b00d4277a32a7b". |
Open CMD as an Administrator, execute the following command to delete existing bindings to the IDERA SQL Diagnostic Manager Rest Service on Server 2:
netsh http delete ssl 0.0.0.0:5171 |
Bind the PFX key by using the following command in an elevated command prompt session on Server 2, GUID SQLDM: 0051d7ed-de72-46d3-ae44-97d566b1ca5a
netsh http add sslcert ipport=0.0.0.0:5171 certhash="<thumbprint of the PFX Key (remove spaces between)>" appid="{0051d7ed-de72-46d3-ae44-97d566b1ca5a}" clientcertnegotiation=enable |
| | | | | | | |