DISE Server supports HTTPS (SSL). Resellers/customers themselves needs to obtain a site certificate from a certificate issuer.

Both wildcard certificates and single domain certificates are supported.

Protocols: TLSv1 TLSv1.1 TLSv1.2;
Ciphers: 
ECDH+AESGCM:ECDH+AES256:ECDH+AES128:DH+3DES:!ADH:!AECDH:!MD5


There is a non-signed certificate supplied with the default installation.


Add an SSL certificate

  • If you get a .crt and .key file, the easiest is to rename them server.crt and server.key, then copy server.crt and server.key to ”C:\DISE Server Data\nginx\ssl” (replace the already existing files).
  • If you get -crt.pem and -key.pem files, copy them to ”C:\DISE Server Data\nginx\ssl” and then edit the file "C:\DISE Server Data\nginx\conf\nginx.conf" to point to the new files.
  • To force users to use HTTPS while connecting to DISE Server, add the following in the file "C:\DISE Server Data\nginx\conf\nginx-conf-root.inc" (create the file if it doesn't exist)
if ($scheme = 'http') {
  return 301 https://$host$request_uri;
}
  • Restart the DISEServer and DISEServerNginx Windows services.


Issue an SSL certificate

Create an SSL certificate using Let's Encrypt

SSL Converter - Convert SSL certificates to different formats