To secure your Acumatica ERP instance and enable HTTPS access, follow these steps:
1. Before installing the SSL certificate, you first need to obtain one. If you purchased the SSL certificate from ReadySpace, please follow this guide to download your certificate.
• https://cloud.readyspace.com/knowledgebase/article/145/how-to-download-my-existing-active-ssl-certificate-/
2. Prepare Your Server:
• Access IIS Manager: Press Win + R, type inetmgr, and press Enter to open Internet Information Services (IIS) Manager.
• Backup Your Server: Before making any changes, create a backup of your server and website to prevent data loss in case of errors.
3. Install the SSL Certificate:
• Open Server Certificates: In IIS Manager, select your server in the left pane. Double-click on “Server Certificates” in the middle pane.
• Complete Certificate Request: In the “Actions” pane on the right, click on “Complete Certificate Request…”.
• Specify Certificate Authority Response: In the dialog box:
• Click the “…” button to browse and select the .cer file you received from us.
• Enter a friendly name for the certificate (e.g., your domain name).
• Select “Web Hosting” as the certificate store.
• Click “OK” to install the certificate.
4. Bind the SSL Certificate to Your Acumatica Website:
• Select Your Website: In IIS Manager, expand the “Sites” node in the left pane and select the Acumatica website you want to secure.
• Edit Site Bindings: In the “Actions” pane on the right, click on “Bindings…”.
• Add HTTPS Binding: In the “Site Bindings” window:
• Click “Add…”.
• Set “Type” to https.
• Set “IP address” to your server’s IP or leave as “All Unassigned”.
• Set “Port” to 443.
• Leave “Hostname” blank unless using Server Name Indication (SNI).
• In the “SSL certificate” dropdown, select the friendly name of the certificate you installed.
• Click “OK” to add the binding.
5. Configure Acumatica for HTTPS:
• Update Acumatica Configuration: Ensure that your Acumatica ERP instance is configured to use HTTPS.
This may involve updating the site’s base URL and other settings within the Acumatica configuration files.
• Enable URL Rewrite Module: If not already enabled, install and enable the URL Rewrite module in IIS to manage HTTP to HTTPS redirection.
6. Redirect HTTP to HTTPS (Optional):
• Set Up Redirection: To ensure all traffic uses HTTPS:
• In IIS Manager, select your Acumatica website.
• Double-click on “URL Rewrite”.
• Click on “Add Rule(s)…”.
• Select “Blank Rule” and click “OK”.
• Configure the rule to redirect all HTTP requests to HTTPS.
7. Restart IIS:
• Restart the Website: In the “Actions” pane, under “Manage website”, click “Restart” to apply the changes.
8. Test the SSL Installation:
• Verify in Browser: Open a web browser and navigate to your Acumatica website using https:// (e.g., https://www.yourdomain.com). Look for a padlock icon in the address bar, indicating a secure connection.
• Use Online Tools: For a detailed analysis, use online tools like SSL Labs’ SSL Test to check your website’s SSL configuration.
9. Monitor SSL Certificate Expiration:
• Set Reminders: SSL certificates typically expire after one year. Set reminders to renew your certificate before it expires to maintain uninterrupted security.