Navigation
This version of the documentation is archived and no longer supported. To learn how to upgrade your version of MongoDB Ops Manager, refer to the upgrade documentation.
You were redirected from a different version of the documentation. Click here to go back.
  • Security >
  • Configure SSL Connections to Ops Manager

Configure SSL Connections to Ops Manager

Overview

You can encrypt connections from the Monitoring and Backup Agents to Ops Manager and from website clients to the Ops Manager web interface. You can encrypt connections in either of two ways:

  • Set up an HTTPS proxy in front of Ops Manager.
  • Run the Ops Manager Application over HTTPS, as described here.

By default, Ops Manager uses port 8443 for HTTPS access.

Run the Ops Manager Application Over HTTPS

To run the Ops Manager Application over HTTPS, you can configure Ops Manager with the server’s certificate and private key.

1

Click Admin to open the administration interface.

2

Click the General tab, then click Ops Manager Config.

3

Configure the PEM key file and password.

Set the following:

4

Configure the Ops Manager Application URL with the new HTTPS information.

Set URL to Access Ops Manager to the new URL and port (8443) for HTTPS access. The following is an example:

https://mms.example.net:8443
5

(Optional) Configure the Ops Manager Application URL to use a private certifiate authority.

If you want to use a private certificate authority, you must add mms.https.CAFile as a custom property on the CUSTOM tab of the Ops Manager Config page in the Admin interface. Set the value of the property to the filesystem path where the private certificate resides:

/path/to/ca_file.pem