Skip to content
Docs

Nginx Setup

Request Certificate

Section titled “Request Certificate”

First open:

certlm.msc

(Local Computer Certificates) and request a new certificate.

Enrollment Policy

Section titled “Enrollment Policy”

Ensure the AD Enrollment Policy is specified so it will be fulfilled by the CA.

Configure Certificate

Section titled “Configure Certificate”
  • Check SSL certificate
  • Click:
more information is required… click here to configure

  • Add:

    • CN
    • DNS record

  • Click OK on Certificate Properties

  • Click Enroll on the original menu

Export Certificate

Section titled “Export Certificate”

After the certificate is created:

  • Right-click → Export
  • Include the private key
  • Set a secure & memorable password

Convert Certificate

Section titled “Convert Certificate”

Take the generated .pfx file and convert it to .pem using OpenSSL:

Terminal window
openssl pkcs12 -in portweaver.pfx -out portweaver.pem -nodes

You will be prompted for the password set during export.

Move Certificate

Section titled “Move Certificate”

The generated:

portweaver.pem

must be moved to:

..\nginx\conf\certs\

Final Verification

Section titled “Final Verification”

After this is configured:

  1. Restart the server
  2. Launch Portweaver using:
launch.bat
  1. Open:
https://portweaver.domain.com
  1. Verify:
    • Certificate is allowed
    • Connection is secure