DISE Server supports HTTPS (SSL). Resellers/customers themselves needs to obtain a site certificate from a certificate issuer.
Both wildcard certificates and single domain certificates are supported.
Protocols: TLSv1 TLSv1.1 TLSv1.2;
Ciphers: ECDH+AESGCM:ECDH+AES256:ECDH+AES128:DH+3DES:!ADH:!AECDH:!MD5
There is a non-signed certificate supplied with the default installation.
Add an SSL certificate
- If you get a .crt and .key file, the easiest is to rename them server.crt and server.key, then copy server.crt and server.key to ”C:\DISE Server Data\nginx\ssl” (replace the already existing files).
- If you get -crt.pem and -key.pem files, copy them to ”C:\DISE Server Data\nginx\ssl” and then edit the file "C:\DISE Server Data\nginx\conf\nginx.conf" to point to the new files.
- To force users to use HTTPS while connecting to DISE Server, add the following in the file "C:\DISE Server Data\nginx\conf\nginx-conf-root.inc" (create the file if it doesn't exist)
if ($scheme = 'http') {
return 301 https://$host$request_uri;
}
- Restart the DISEServer and DISEServerNginx Windows services.
Issue an SSL certificate
Create an SSL certificate using Let's Encrypt
SSL Converter - Convert SSL certificates to different formats