Obtaining an SSL certificate

Running Infocenter inside an application (for example, Infor Ming.le™or M3 H5) that runs in HTTPS also requires the Infocenter to run in HTTPS. To run Infocenter properly in HTTPS, you must obtain a digital certificate, which is an electronic document used to verify server identification and to encrypt communication between server and client. There are three ways to obtain a certificate:

  1. Purchase one from a Certification Authority (CA)
  2. Generate one from the internal certificate server (comes with Windows Server)
  3. Create a self-signed certificate.

    Observe the following guidelines when you determine how to implement security certificates at your site.

    • When you order an SSL certificate, always specify the server name as a fully qualified domain name, for example, server.corp.com. All automated configuration and tooling in your application will assume that your certificate contains the fully qualified server name.

    • An SSL certificate is created for a specific URL and HTTP server. It can not be reused on any other server.

    The table below illustrates the advantages and disadvantages of each mode of acquiring a certificate:

    Mode of acquisition Advantages Disadvantages
    Issued by a third-party vendor Applicable to clients from any domain. Additional expense; delivery time gap.
    Issued by an in-house certificate authority. Inexpensive; automatically applies to all clients in the internal network. Configuration and maintenance of certification server is needed; applies only to domain clients.
    Self-signed certificate Inexpensive and easy to use, especially for test environments. Not recommended because it is not as secure as certificates issued by a root certificate. The certificate must also be installed on every client machine in advance in order for Infor Smart Office to start.