In this article  :

• Objective

• Prerequisites

• Steps to follow

• Validation and confirmation

• Tips

• Related topics and articles

 Objective   

This article provides step-by-step guidance on how to enable SSL automatically using ADAudit Plus. Securing ADAudit Plus with SSL ensures encrypted data transmission, preventing unauthorized access and enhancing security.

 Prerequisites   

• Have access to the ADAudit Plus web console.

• Have administrative access to the ADAudit Plus server.

• Have a valid SSL certificate from a trusted certificate authority (CA) or a self-signed certificate.

 Steps to follow 

 Step 1: Define the SSL port   

1. Log in to ADAudit Plus with administrative privileges.

2. Navigate to Admin > General Settings > Connection.

3. Check the Enable SSL Port [https] box. The default SSL port 8444 is automatically selected.

4. Click Save changes.

 Step 2: Restart the ADAudit Plus service to apply the changes 

1. Log in to the server where ADAudit Plus is installed.

2. Open the Run dialog (Win + R), type services.msc, and press Enter.

3. In the Services window, locate the ManageEngine ADAudit Plus service.

4. Right-click the service and select Restart to apply the recent configuration changes.

 Step 3: Generate a certificate   

1. Log in to ADAudit Plus and navigate to Admin > General Settings > SSL Certification Tool.

2. Under Select an option, choose Generate Certificate.

3. Fill in the required details:

• Common Name: Enter the server name where ADAudit Plus is installed (e.g., servername for https://servername:9251).

• Subject Alternative Name (SAN): Enter the server name (must match the product URL).

• Organizational Unit: Enter the relevant department name.

• Organization: Enter the legal name of your organization.

• City, State/Province, and Country Code: Enter the respective details as per the registered address.

• Password: Set a password (minimum six characters) to secure the keystore.

• Validity (In Days): Specify the certificate validity period (default is 90 days).

• Public Key Length (In Bits): Default is 2048 bits (can be increased in multiples of 64).

4. Choose one of the following options:

• Generate CSR: Create a CSR file to submit to a CA for a signed certificate.

• Generate & Apply Self-Signed Certificate: Create and apply a self-signed certificate instantly.

 Step 4: Apply a certificate   

1. Navigate to Admin > General Settings > SSL Certification Tool.

2. Under Select an option, choose Apply Certificate.

3. Select the Upload Option based on the certificate file type:

• ZIP Upload: If you received a ZIP file from the CA.

• Individual Certificates: If you have separate user, intermediary, and root certificate files.

• Certificate Content: Copy and paste the certificate content into the provided field.

4. If the certificate has a password-protected private key, enter the Private Key Passphrase.

5. Click Apply and restart ADAudit Plus for the changes to take effect.

 Validation and confirmation   

1. Verify if SSL is enabled. Open a browser and access ADAudit Plus using https://<servername>:8444.

2. Ensure there are no certificate errors.

3. If using a self-signed certificate, install it as a trusted root certificate in your browser.

 Tips 

• Use a trusted CA for SSL certificates instead of self-signed certificates.

• Renew certificates before expiration to avoid service disruptions.

• Configure proper SAN entries to avoid browser warnings.

• Regularly audit SSL configurations for security compliance.

 Related topics and articles   

• How to troubleshoot two-factor authentication (2FA) issues in ADAudit Plus