Documentation Center

Binding the certificate to each SDL Online Editor service port

After the certificate was imported successfully, bind it to the port of each SDL Online Editor service.

Procedure

  1. Start a Windows PowerShell session as an administrator.
  2. Retrieve the thumbprint of the certificate from the certificate store by executing the following command:
    
    > Get-ChildItem -Path cert: -Recurse |Where-Object {$_.Subject -match "MATCHING_STRING"} | Select-Object -property Subject,@{Name="Thumbprint"; Expression = {$_.Thumbprint.ToLower()}}| Format-List
    Make sure you replace MATCHING_STRING with the domain name of the imported certificate.
  3. Save the thumbprint in the response.
  4. Execute the following commands in PowerShell to bind the SSL certificate to each SDL Online Editor service port:
    netsh
    netsh> http
    netsh http> add sslcert ipport=0.0.0.0:<es_port> certhash=<SSL_CERTIFICATE_THUMBPRINT> appid={00112233-4450-6677-8899-AABBCCDDEEFF}
    netsh http> add sslcert ipport=0.0.0.0:<esr_port> certhash=<SSL_CERTIFICATE_THUMBPRINT> appid={00112233-4451-6677-8899-AABBCCDDEEFF}
    netsh http> add sslcert ipport=0.0.0.0:<bcm_port> certhash=<SSL_CERTIFICATE_THUMBPRINT> appid={00112233-4452-6677-8899-AABBCCDDEEFF}
    Make sure you replace <SSL_CERTIFICATE_THUMBPRINT> with the thumbprint you retrieved earlier and <es_port>, <esr_port>, and <bcm_port> with the ports on which the the Editor Service, the Editor Service Router, and the BCM Service are running.
  5. List the three SSL certificate bindings:
    netsh http> show sslcert