Configuring WorldClient to accept HTTPS connections

Expand / Collapse
 

Configuring WorldClient to accept HTTPS connections


HOWTO: Configuring WorldClient to accept HTTPS connections

This article details how you'd configure WorldClient to run over a HTTPS / SSL connection using a self signed SSL certificate.

1. At Setup -> Web, Sync and IM Services -> SSL & HTTPS select 'HTTP and HTTPS'.

2. Enter a 'Host name' that you will be using to access WorldClient. For example, if you have an entry in your domain's DNS record that resolves to the static IP address of the Internet connection MDaemon sits behind of mail.domain.com this would be the entry you'd specify in this location.

3. Enter your company name in 'Organization / company name'.

4. The Encryption key length can remain at 1024 unless you have a specific requirement for a weaker or stronger encryption method.

5. Change 'Country / region' to United Kingdom GB.

6. Finally choose 'Create Certificate':

You'll now see the details of the certificate you've created and can Apply and Ok the change:

You can now test that WorldClient is working over HTTPS / SSL by visiting https://mail.domain.com (replacing mail.domain.com with the hostname specific to your installation) in a browser.

A self-signed certificate is signed by its own creator and because of this, the certificate is not trusted by web browsers automatically and you'll receive a prompt about the self-signed status when you visit your HTTPS address in a browser.

To prevent this happening you need to get the browser to trust the certificate as follows...

Internet Explorer:

1. Visit your HTTPS address in Internet Explorer.

2. Click on 'Continue to this website (not recommended)'.

3. Click on the Certificate error in the red coloured address bar at the top of Internet Explorer.

4. Click on 'View Certificates' and then choose the 'Install Certificate...' button on the General tab.

5. In the 'Certificate Import Wizard', click Next.

6. Select 'Place all certificates in the following store' and click Browse.

7. In the 'Select Certificate Store' dialog, select 'Trusted Root Certification Authorities', click OK.

8. In the wizard, click Next and then Finish. If a security message pops up, choose 'Yes'.

Firefox:

1. Visit your HTTPS address in Firefox.

2. Select 'Permanently accept this certificate' when Firefox pops up a window.