Skip to main content
Kofax

SSL configuration for Optitrade Confirm

Question/Problem: How to configure SSL in Optitrade Confirm

Solution: 

1.     Create a Self signed certificate  

Once you have SSL configured and working, you can replace the self signed certificate with one issued by a trusted authority in compliance with your company’s security policy. For the purposes of Optitrade Confirm application any certificate is good.

i.        Create a self signed security certificate on IIS using the selfSSL utility from Microsoft. Once you have the SSL Utility in pace, run the following command (as Administrator)

                selfssl /N:CN=<your.domain.com> /V:<number of valid days>

clipboard_e71eb20f0ed7893955fea1220ba26fc80.png

           ii.        Place the certificate in the trusted root folder as well.  Go to Start -> Run -> enter mmc

clipboard_e3a8e87178f03c06c076bcadb4e1bb960.png

            iii.        In the console go to File -> Add/Remove Snap-in

clipboard_ea19a39e21604b63ce5366ac7349cf10e.png

iv.        Add certificate from the left hand side

clipboard_e7110932724783d5b99986fee343e731e.png

v.        Select computer account -> Local Computer -> select Finish

clipboard_e7002b598a96eed925eced4c128f11e6c.png

vi.        Select certificate and Click on OK to view the certificates

clipboard_ec35ac85e8bdbdb16c222c61e8944c93b.png

vii.         Navigate to Personal -> Certificates and locate the certificate you setup using the SelfSSL utility. Right-click the certificate and select copy

clipboard_ea3a83639e01cb8ce30dc1142e692c3a1.png

viii.         Paste the certificate in the Trusted Root Certification Authorities -> Certificates folder

clipboard_e4f43285894be59b47283cbe107349cbc.png

 

 

 2.     Configure SSL for your Apppool in IIS
   

         i.    In your IIS Manager go to Server Certificates, the certificate you just created should be present, else import it

clipboard_efa4b65e2aafe1bece247e5e5009af02f.png

ii.        Enable SSL for the OptitradeTradeExplorer site. Select Require SSL and accept certificate options

 

clipboard_e03be8f6b22f07fe4281a28497feb70f3.png

 

          iii.        In the Default Web Site bindings, add a new binding

clipboard_ec417fc07f7b82f76d79b8871ee81f29f.png

 

iv.       Link the certificate you created the binding you have just created

clipboard_e58c98bf4bf616976c66cb3526bf691e8.png

 

3.        Configuration in Optitrade Confirm application

Edit the TradeExplorer web.config file in

<InstallationDrive>:\Program Files\Optitrade Confirm\Trade Explorer\web.config

Take a backup of the file before you start editing. Change httpTranspot to httpsTransport as shown below. Change the security mode to Transport for the webHttpBinding and basicHttpBinding as shown below.

clipboard_ee980576d5cd4630d34c48e1ba6d22cae.png

 

4.         Do an IISRESET

5.         Open the OptitradeConfirm UI using https

clipboard_e697f7fbbfb60f1bc750e412874a3859e.png

 

 

Author: Shivani Gupta

  • Was this article helpful?