Professional Documents
Culture Documents
Contents
Prerequisites ........................................................................................................................................................................... 2
Installing A Certificate to the Proficy Plant Applications 7.0 Reporting/Web Server ............................................................. 3
Appendices .............................................................................................................................................................................. 6
How to Leverage OpenSSL To Create A Certificate Request For Submission To A Certificate Authority (CA) ................... 6
How to Install OpenSSL To Leverage Tools for SSL Certificate Creation on the Proficy Plant Applications Report Server 8
Prerequisites
A signed certificate from a trusted certificate authority (CA). The certificate MUST contain at least TWO SANs
(Subject Alternative Names) with the report server’s FQDN (Fully Qualified Domain Name)
(servername.mydomain.suffix) and the NetBios/Short/Host) computer name (servername).
This is required to facilitate the Report Server’s reliance on a Hostname (NetBios) or FQDN of 25 characters or
less.
If the Report Servers FQDN is 25 characters or less, the FQDN may be used and a NetBios SAN will not be
required. However, it is HIGHLY recommended to leverage the NetBios name to ensure compatibility.
This document also explains how to prepare a certificate request with the OpenSSL toolset
This toolset will need to be installed on the Report Server. The above links are to the direct, current version downloads
as of 8/1/2017. The latest version(s) can be obtained from SLProWeb.com. The tool may be uninstalled once the
certificates are installed.
This document is based on the OpenSSL tool, other tools may exist but OpenSSL is recommended for use with
this documentation. Support does not support any tool in particular, including OpenSSL. But, it is the one we
are most familiar with. If there are any issues with the OpenSSL tool, support will not be able to assist. This
document assumes a working OpenSSL installation is available.
Installing A Certificate to the Proficy Plant Applications 7.0 Reporting/Web Server
These steps assume that a SSL certificate with a public and private key have been obtained from a trusted authority and
the OpenSSL software tools have been installed – if a certificate request is needed)
OpenSSL – Win64 OpenSSL (not the light version) or Win32 OpenSSL (not the light version) will need to be installed on
the Historian server. These links are to the direct current version downloads as of 8/1/2017. The latest version can be
obtained from SLProWeb.com
The OpenSSL tool is used to create the certificate request (if needed) and to convert the received files to the required
format for Tomcat/Apache servers. The tool may be uninstalled once the certificates are installed.