Typically, the messages sent and received between OnBase Minutes and the Voting Client and Voting Client Display are in plain text, when not using TLS/SSL. You can securely configure the connection between the service and each Client application using TLS/SSL by doing the following:
-
Locate the hash or thumbprint of your certificate. This is found on the Details tab of the certificate, and is typically located by scrolling down to the bottom of the list.
Note:
The hash/thumbprint can be copied from here, but be aware that to use this value, the spaces between the character pairs need to be removed.
- Open a command prompt as an administrator.
-
Run one of the following command lines after inserting the hash/thumbprint:
-
netsh http add sslcert ipport=0.0.0.0:8080 certhash=[insert hash/thumbprint value here] appid={acbeef11-b84f-4fe3-8359-ca6c28b107dc}
-
netsh http add sslcert hostnameport=[server name here]:8080 certhash=[hash/thumbprint value here] appid={acbeef11-b84f-4fe3-8359-ca6c28b107dc} certstorename=MY
-
-
In the BoardMeetingService.exe.config file, locate the
Hyland.BoardMeeting.Service/Application
section and do the following:
-
Ensure that the ServerAddress matches the name of the server in the certificate.
-
Ensure that the AllowInsecureConnections setting is set to false(this is the default value, but only if the Enable TLS check box is selected during the installation).
-
- Start the Hyland Board Meeting Service.
- In the config file for each Client application, locate the Hyland.Applications.PushNotification/HostServer section and set the url setting to include https, along with the same server name from the certificate.