SSL configuration for Optitrade Confirm
Question/Problem: How to configure SSL in Optitrade Confirm
Solution:
1. Create a Self signed certificate
Once you have SSL configured and working, you can replace the self signed certificate with one issued by a trusted authority in compliance with your company’s security policy. For the purposes of Optitrade Confirm application any certificate is good.
i. Create a self signed security certificate on IIS using the selfSSL utility from Microsoft. Once you have the SSL Utility in pace, run the following command (as Administrator)
selfssl /N:CN=<your.domain.com> /V:<number of valid days>
ii. Place the certificate in the trusted root folder as well. Go to Start -> Run -> enter mmc
iii. In the console go to File -> Add/Remove Snap-in
iv. Add certificate from the left hand side
v. Select computer account -> Local Computer -> select Finish
vi. Select certificate and Click on OK to view the certificates
vii. Navigate to Personal -> Certificates and locate the certificate you setup using the SelfSSL utility. Right-click the certificate and select copy
viii. Paste the certificate in the Trusted Root Certification Authorities -> Certificates folder
2. Configure SSL for your Apppool in IIS
i. In your IIS Manager go to Server Certificates, the certificate you just created should be present, else import it
ii. Enable SSL for the OptitradeTradeExplorer site. Select Require SSL and accept certificate options
iii. In the Default Web Site bindings, add a new binding
iv. Link the certificate you created the binding you have just created
3. Configuration in Optitrade Confirm application
Edit the TradeExplorer web.config file in
<InstallationDrive>:\Program Files\Optitrade Confirm\Trade Explorer\web.config
Take a backup of the file before you start editing. Change httpTranspot to httpsTransport as shown below. Change the security mode to Transport for the webHttpBinding and basicHttpBinding as shown below.
4. Do an IISRESET
5. Open the OptitradeConfirm UI using https
Author: Shivani Gupta