How do I enable SSL on Kaseya Network Monitor's web interface in version 5?
Mininum KNM v5 build: 8961
This procedure requires a valid web server certificate installed in the Computer container of the KNM host. You can either obtain a 3rd party certificate from any certificate provider, generate a web server certificate from your own CA, or you can generate a self-signed certificate using a tool like Open SSL or equivalent.
To create a self-signed certificate using KNM, follow the instructions below. If you already have a certificate installed, proceed to the step 4.
- Open a command prompt with the minimum rights as member of the local Administrators group
- Navigate to your KNM root folder
- Type the following command to create the certificate:
nmservice -createcert "hostname" "subject"
Ex. for subject: "CN=hostname,T=KNM"
- Run mmc.exe with the minimum rights as member of the local Administrators group
- Choose File-->Add/Remove Snap-in
- Select "Certificate services", click Add, and select "Computer account"
- Go to Certificates-->Personal-->Certificates
- Right-click the certificate you will be using for KNM and choose "Open"
- Click the "Details" tab and note the CN names in the Subject field
- In your KNM root folder, edit the file "init.cfg" using Notepad or similar application
- Add the following lines to your init.cfg file:
WEBSERVER_CERT=<one of the CNs from the certificate's subject field>
- Restart the Kaseya Network Monitor service on your KNM host
- Connect to your KNM host using https in the address field
On KNM in VSA integration mode, enabling SSL is not necessary nor is it supported. If your VSA is SSL enabled, the communication will already have an encrypted channel.
Kaseya Network Monitor v5 - Standalone Edition