- Security >
- Configure SSL Connections to Ops Manager
Configure SSL Connections to Ops Manager¶
On this page
Overview¶
You can encrypt connections from the Monitoring and Backup Agents to Ops Manager and from website clients to the Ops Manager web interface. You can encrypt connections in either of two ways:
- Set up an HTTPS proxy in front of Ops Manager.
- Run the Ops Manager Application over HTTPS, as described here.
By default, Ops Manager uses port 8443
for HTTPS access.
Run the Ops Manager Application Over HTTPS¶
To run the Ops Manager Application over HTTPS, you can configure Ops Manager with the server’s certificate and private key.
Click Admin to open the administration interface.¶
Click the General tab, then click Ops Manager Config.¶
Configure the PEM key file and password.¶
Set the following:
HTTPS PEM Key File
to a PEM file containing an X509 certificate and private key.HTTPS PEM Key File Password
to the password for the certificate.
Configure the Ops Manager Application URL with the new HTTPS information.¶
Set URL to Access Ops Manager
to the new URL and port (8443
)
for HTTPS access. The following is an example:
(Optional) Configure the Ops Manager Application URL to use a private certifiate authority.¶
If you want to use a private certificate authority, you
must add mms.https.CAFile
as a custom property on the CUSTOM
tab of the Ops Manager Config page in the Admin interface.
Set the value of the property to the filesystem path where the private
certificate resides: