Documentation forIpMonitor

Install an SSL certificate

To avoid sending passwords and configuration information over the network in clear text, install an SSL certificate using the Communications: SSL setting in the ipMonitor configuration program.

SSL allows you to securely log in to the ipMonitor web interface from anywhere on the network or Internet and safely exchange account credentials, network paths, machine names, and other sensitive information using SSL encryption.

You can use ipMonitor without an SSL certificate, but some features (such as Credentials Manager) will not be fully enabled unless you are connecting from the ipMonitor host system. Consider a self-signed certificate if an SSL certificate from a Certificate Authority (CA) is not an option.

Credentials Manager requires you to log in to ipMonitor using a secure SSL (HTTPS) connection. If you log in using a non-secure channel (such as HTTP), Credentials Manager displays a limited view of credentials and prohibits any changes to your credential configuration.

You can install an SSL certificate using one of the following methods: 

After you install the SSL certificate, configure ipMonitor to listen for HTTPS traffic in your network.

Install a self-signed certificate

After you install ipMonitor for the first time, ipMonitor prompts you to generate a self-signed certificate. If you choose this option, you can change the certificate at any time using the ipMonitor configuration program located at Start > SolarWinds ipMonitor > Configure ipMonitor.

Self-signed certificates require no initial cost. Because this certificate is generated and installed by the application, there is no trusted authority involved in using and verifying the certificate. As a result, you must configure your supported web browser to trust this certificate.

See Generate a self-signed certificate for details.

Install an SSL certificate from a trusted CA

You can obtain an SSL certificate from a trusted CA (such as DigiCert, GlobalSign, and InstantSSL). The SSL certificate must be a server certificate that you can install in your Local Machine Store.

To install an SSL certificate, generate a certificate signing request (CSR) and then submit the CSR text file to the CA. When you receive the SSL certificate from your CA, install the certificate in ipMonitor.

When you are finished, configure ipMonitor to listen for HTTPS traffic in your network.

Generate a Certificate Signing Request (CSR)

  1. Log in to ipMonitor as an administrator.
  2. Click Start > SolarWinds ipMonitor > Configure ipMonitor.
  3. Click Communications: SSL.

  4. In the Communications: SSL window, click the SSL Certificate Mode drop-down menu and select Manual Selection (Advanced).

  5. Click Generate new Certificate Request.
  6. Complete the fields in the New Certificate Request window, and then click Generate.

    Check with your CA regarding the supported key size.

  7. Navigate to:

    C:\Program Files (x86)\Solarwinds\ipMonitor

  8. Locate the following file:

    CertReq.txt

  9. Submit the file to your designated CA.
  10. After you receive your SSL certificate from the CA, install the certificate in ipMonitor.

Install the SSL certificate in ipMonitor

  1. Locate the SSL certificate you received from your Certificate Authority.
  2. Click Start > SolarWinds ipMonitor > Configure ipMonitor.
  3. Click Communications: SSL.

  4. In the Communications: SSL window, click the SSL Certificate Mode drop-down menu and select Manual Selection (Advanced).

  5. Click Import Certificate.
  6. In the Import Certificate window, select CA Trusted Root Certificate.

  7. Cut and past the certificate (including the header and footer lines) into the window, and then click Import.

    The certificate displays in the Communications: SSL window.

  8. Click OK.
  9. Configure ipMonitor to listen for HTTPS traffic.