Skip to main content
Find a Sales Rep

How to Check Certificates in CenTran 4.1.5

Updated

Question

How to Check Certificates in CenTran 4.1.5?

Answer

The following items can be checked for Centran Certificates:

  • Centran Configuration File: 

The Centran configuration file section for behaviors >>serviceBehaviors >>serviceCertificate. has the entries for what certificate is going to be used by Centran. See serviceCertificate of serviceCredentials for a detailed description of these values. 

The certificate can be identified by name or by thumbprint. By default it is set up by the Centran Configuration Manager by thumbprint.

  • Centran Configuration Manager: 

Open the Centran Configuration Manager. 

Check the Self Signed Certificates tab. 

The Centran Web Service Server Certificate will show a certificate name. This name must exactly match how the web browser is being used to access Centran, or the certificate will not match..

  • Certificate Source: 

The certificate can be self signed, or from a certificate authority. If the certificate for the Centran web service is from a network certificate authority, any clients will automatically trust the Centran certificate. 

If the certificate is self signed, then to establish a chain of trust, that certificate or certificate authority must be installed manually with client systems. 

If the certificate is self signed and created on Windows Server 2003, the level and size of the encryption of the certificates do not match the requirement for SSL. To do SSL off of Windows Server 2003, you will need to generate proper certificates from a system running Windows 7 or higher, or get certificates from a network certificate authority.

  • Exporting Centran Certificate: 

From the start menu, select Accessories and right click on Command Prompt. Select Run as administrator

The command prompt should have the title Administrator: Command Prompt

Type mmc at the administrator command prompt. 

You should see a window that says Console1 - [Console Root] 

Click File Add / Remove Snap In.... A dialog labeled Add or Remove Snap-ins should be displayed. 

Select Certificates and click Add. Select Computer account and then Local Computer from the dialogs that are displayed. Click Finished

Click OK in the Add or Remove Snap-ins dialog. 

Under Certificates (Local Computer), expand Trusted Root Certification Authorities, and expand Certificates

Select the cerficate matching the Certificate Authority used to generate the self signed certificate used for Centran. Right click on the certificate and select All Tasks>> Export...

The Certificate Export Wizard is displayed. Export the certificate without the private key. Use the default settings to export the certificate to a .CER file.

  • Client System Self Signed Certificate Install: 

Open up a console with the Certificates snap in as administrator as described above, on the client computer system that is going to be accessing the Centran web service. 

Under Certificates (Local Computer), expand Trusted Root Certification Authorities, and expand Certificates

Right click on Certificates and select All Tasks >> Import...

Import the certificate .CER file you exported from the Centran server

Related to