How to Install an SSL Certificate on HotFolder
Posted by Aly Essa, Last modified by Aly Essa on 20 April 2018 02:45 PM

Overview

This article will provide a quick walkthrough of the installation an SSL Certificate in FileCatalyst HotFolder.

For the FileCatalyst HotFolder we need the following components to install the SSL Certificate:

  • Certificate in PKCS#7 format with a .pem  extension.
  • Private Key file with a .key or .pvk extension.
  • Private Key password to open the Private Key file and Certificate. The password must be 6-8 characters.

Depending on your starting point you can jump down in the article to different guides which will help you install and deploy an SSL Certificate on your HotFolder deployment:

Environment

FileCatalyst HotFolder v3.5 and later.

Resolution

Please make sure that OpenSSL is installed on your machine before you proceed with any further in this guide.

Install OpenSSL:

  1. Download the OpenSSL installer from one of the mirrors located at https://wiki.openssl.org/index.php/Binaries. The example install directory referenced in this article is C:\OpenSSL\.

  2. Follow the installation wizard to complete the rest of the installation.

  3. Make sure that C:\OpenSSL\bin\ has been added to your Windows Environment PATH Variable. This will make the OpenSSL command accessible from the Command Prompt.



Install SSL Certificates on FileCatalyst HotFolder

Once you have your Certificate (.pem file), Private Key (.pvk) and PEM Container Password you can modify the HotFolder configuration file (fchf.conf) directly. This method is not recommended while the FileCatalyst HotFolder service is running. Please shut down the FileCatalyst HotFolder service before you proceed.

Locate your fchf.conf file which is inside the installation path of your FileCatalyst HotFolder.

 
Search for the following parameters and enter your certificate details:
 
FC.hotfolder.config.private.key.pass=<Enter your PEM Container Password>
FC.hotfolder.config.private.key=C:/Program Files/FileCatalyst HotFolder/SSL Cert/pvk.key
FC.hotfolder.config.certificate.file=C:/Program Files/FileCatalyst HotFolder/SSL Cert/fullchain.pem
FC.hotfolder.config.enable.http.security=true


SSL Certificate Installation on the FileCatalyst HotFolder Using a PFX File

The steps to extract the elements needed in deploying an SSL Certificate on HotFolder from a PFX container are the same as what has been outlined in our SSL Certificate Installation on the FileCatalyst Server Using a PFX File guide. 

Once you have the PEM container and Private Key you can proceed to the Install SSL Certificates on FileCatalyst HotFolder section.

SSL Certificate Installation on FileCatalyst HotFolder using PKCS#7 Certificate

The steps to extract the elements needed in deploying an SSL Certificate on HotFolder are the same as what has been outlined in our 
SSL Certificate Installation on FileCatalyst Server using PKCS#7 Certificate guide. 

Once you have the PEM container and Private Key you can proceed to the Install SSL Certificates on FileCatalyst HotFolder section.


Using Self Signed Certificates on the FileCatalyst HotFolder
When FileCatalyst HotFolder is first installed a self-signed certificate is created and stored in the installation directory of HotFolder. If the self-signed certificates have been deleted and they are referenced in the fchf.conf file they will be regenerated on the next HotFolder service launch.
If you would like to use a self-signed certificate with your own company information please use the following steps:
  1. Open a command prompt and navigate to the final destination of where you want the Private Key and PEM Container to be stored.

  2. Run the following command:

    openssl req -newkey rsa:2048 -nodes -keyout privatekey.pvk -x509 -days 365 -out certificate.pem

    You will be prompted to enter some information about your company. 


    Your output should look like:



    Now that you have the Certificate (.pem file) and Private Key (.pvk) generated, you can proceed to the Install SSL Certificates on FileCatalyst HotFolder section.

 


Comments (0)