Activate certificate
Whatever certificate is chosen for the VAKA system, certain parameters must be configured in the VAKA system before the certificate is activated.
- Log in to the Java/PC client
- Navigate to Domain Settings.
- If this has not already been done, expand all individual domains.
- For each domain controller (B60):
- Double-click the name of the device.
- Navigate to the General tab.
- Enter the host name, the IP address or URL used by the VAKA system to allow system components on the network to find each other.
- Navigate to the Network tab.
- Ensure that the relevant information has been provided.
- Click Save to close. If no information has been changed, click Close to finish.
- For any domain controller (B60) exposed to the internet for reservation and/or remote administration:
- Enter the Public host name (the IP address or URL used on the internet to reach the VAKA system).
- Enter the DNS server.
VAKA-generated certificate
- Navigate to Settings -> System ->VAKA Admin.
- Under Certificate type, select Locally generated.
- Click Save to close.
To install a VAKA-generated certificate in a web browser that interacts with VAKA, see the section Configure Tibbo.
Let's Encrypt
In order for verifications from the Let’s Encrypt service to work, port 80 must be accessible from the internet towards the domain controller to which the web browser is connected.
- Navigate to Settings -> System ->VAKA Admin.
- Under Certificate type, select Let’s Encrypt.
- Click Save to close.
Customer-specific certificate
Certificates must only contain certificates of one type. VAKA cannot handle linked (chain) certificates.
- Navigate to Settings -> System ->VAKA Admin.
- Under Certificate type, select Customer-specific.
- Click Import.
- Select the appropriate webserver certificate (PEM format).
- Click Next.
- Select a file with a private key (PEM format).
- If the private key is encrypted, enter the password of the private key file.
- Click Save to close.