# Configuring HTTPS in Ingress

Open iT Ingress is configured to use secure browsing (HTTPS) by default, with an SSL Certificate and Key. If you need further configuration for the HTTPS setup, please review the relevant section for detailed instructions.

# Configure HTTPS with Windows Certificate Store

Open iT Ingress can use secure browsing (HTTPS) using SSL certificates installed in the Windows Certificate Store.

  1. Go to the Open iT Ingress configuration directory, which is C:\Program Files\OpeniT\Ingress\configuration by default.

  2. Create a copy of SiteBindings.json and rename the duplicate file to SiteBindings.Override.json.

    Open the existing SiteBindings.Override.json, if there is already one.

  3. In the override file, input the necessary details.

    1. In the Scheme field, use https.
    2. In the Host field, specify the hostname or domain name.
    3. In the Port field, specify the port number. You can use the default port for HTTPS, 443.
    4. In the Store field, specify the Certificate Store where your SSL certificate is stored.
    5. In the Location field, specify the appropriate store location.

    SiteBindings.Override.json
     1 | {
 2 |    "SiteBindings":  [
 3 |      { 
 4 |         "Scheme": "https",
 5 |         "Host": "customer.openit.com",
 6 |         "Port": "443",
 7 |         "Certificate": {
 8 |           "Store": "My",
 9 |           "Location": "LocalMachine"
10 |         }
11 |      }
12 |    ]
13 | }

  4. Save the file.

  5. Open the Task Manager.

  6. Go to the Services tab.

  7. Restart the OpeniTIngress service.

# Configure HTTPS with an SSL Certificate and Key

Open iT Ingress can use secure browsing (HTTPS) using an SSL certificate and key.

  1. Go to the Open iT Ingress configuration directory, which is C:\Program Files\OpeniT\Ingress\configuration by default.

  2. Create a copy of SiteBindings.json and rename the duplicate file to SiteBindings.Override.json.

    Open the existing SiteBindings.Override.json, if there is already one.

  3. In the override file, input the necessary details.

    1. In the Scheme field, use https.
    2. In the Host field, specify the hostname or domain name.
    3. In the Port field, specify the port number. You can use the default port for HTTPS, 443.
    4. In the Cert field, specify the path to the SSL certificate.
    5. In the Location field, specify the path to the SSL key.

    SiteBindings.Override.json
     1 | {
 2 |    "SiteBindings":  [
 3 |      { 
 4 |         "Scheme": "https",
 5 |         "Host": "customer.openit.com",
 6 |         "Port": "443",
 7 |         "Certificate": {
 8 |           "Cert": "C:\Program Files\OpeniT\Ingress\configuration\caddy\ssl.crt\server.crt",
 9 |           "Key": "C:\Program Files\OpeniT\Ingress\configuration\caddy\ssl.key\server.key"
10 |         }
11 |      }
12 |    ]
13 | }

  4. Save the file.

  5. Open the Task Manager.

  6. Go to the Services tab.

  7. Restart the OpeniTIngress service.

  1. Go to the Open iT Ingress configuration directory, which is /opt/openit/ingress/configuration by default.

  2. Create a copy of SiteBindings.json and rename the duplicate file to SiteBindings.Override.json.

    Open the existing SiteBindings.Override.json, if there is already one.

  3. In the override file, input the necessary details.

    1. In the Scheme field, use https.
    2. In the Host field, specify the hostname or domain name.
    3. In the Port field, specify the port number. You can use the default port for HTTPS, 443.
    4. In the Cert field, specify the path to the SSL certificate.
    5. In the Location field, specify the path to the SSL key.

    SiteBindings.Override.json
     1 | {
 2 |    "SiteBindings":  [
 3 |      { 
 4 |         "Scheme": "https",
 5 |         "Host": "customer.openit.com",
 6 |         "Port": "443",
 7 |         "Certificate": {
 8 |           "Cert": "/opt/openit/ingress/configuration/caddy/ssl.crt/server.crt",
 9 |           "Key": "/opt/openit/ingress/configuration/caddy/ssl.key/server.key"
10 |         }
11 |      }
12 |    ]
13 | }

  4. Save the file.

  5. Run the following command to restart Ingress:

    Command Syntax
    systemctl restart openit-ingress-api

# Configure HTTPS using Let's Encrypt

Open iT Ingress can use secure browsing (HTTPS) using Let's Encrypt.

  1. Go to the Open iT Ingress configuration directory, which is C:\Program Files\OpeniT\Ingress\configuration by default.

  2. Create a copy of SiteBindings.json and rename the duplicate file to SiteBindings.Override.json.

    Open the existing SiteBindings.Override.json, if there is already one.

  3. In the override file, make sure that the Cert and Key fields are empty.

    This allows Caddy to automatically create a certificate.

    SiteBindings.Override.json
     1 | {
 2 |    "SiteBindings":  [
 3 |      { 
 4 |         "Scheme": "https",
 5 |         "Host": "customer.openit.com",
 6 |         "Port": "443",
 7 |         "Certificate": {
 8 |           "Cert": "",
 9 |           "Key": ""
10 |         }
11 |      }
12 |    ]
13 | }

  4. Save the file.

  5. Open the Task Manager.

  6. Go to the Services tab.

  7. Restart the OpeniTIngress service.

  1. Go to the Open iT Ingress configuration directory, which is /opt/openit/ingress/configuration by default.

  2. Create a copy of SiteBindings.json and rename the duplicate file to SiteBindings.Override.json.

    Open the existing SiteBindings.Override.json, if there is already one.

  3. In the override file, make sure that the Cert and Key fields are empty.

    This allows Caddy to automatically create a certificate.

    SiteBindings.Override.json
     1 | {
 2 |    "SiteBindings":  [
 3 |      { 
 4 |         "Scheme": "https",
 5 |         "Host": "customer.openit.com",
 6 |         "Port": "443",
 7 |         "Certificate": {
 8 |           "Cert": "",
 9 |           "Key": ""
10 |         }
11 |      }
12 |    ]
13 | }

  4. Save the file.

  5. Run the following command to restart Ingress:

    Command Syntax
    systemctl restart openit-ingress-api

# Add Multiple Site Bindings

  1. Go to the Open iT Ingress configuration directory, which is C:\Program Files\OpeniT\Ingress\configuration by default.

  2. Create a copy of SiteBindings.json and rename the duplicate file to SiteBindings.Override.json.

    Open the existing SiteBindings.Override.json, if there is already one.

  3. In the override file, copy the entire site binding section.

    For example, copy the contents from line 3 to 11.

    SiteBindings.Override.json
     1 | {
 2 |    "SiteBindings":  [
 3 |      { 
 4 |         "Scheme": "http",
 5 |         "Host": "",
 6 |         "Port": "8080",
 7 |         "Certificate": {
 8 |           "Store": "",
 9 |           "Location": ""
10 |         }
11 |      }
12 |    ]
13 | }

  4. Paste the copied contents at the end of the SiteBindings array.

    Add a comma , to separate each site bindings.

    SiteBindings.Override.json
     1 | {
 2 |    "SiteBindings":  [
 3 |      { 
 4 |         "Scheme": "http",
 5 |         "Host": "",
 6 |         "Port": "8080",
 7 |         "Certificate": {
 8 |           "Store": "",
 9 |           "Location": ""
10 |         }
11 |      },
12 |      {
13 |         "Scheme": "http",
14 |         "Host": "",
15 |         "Port": "8080",
16 |         "Certificate": {
17 |           "Store": "",
18 |           "Location": ""
19 |         }
20 |      },
21 |      {
22 |         "Scheme": "http",
23 |         "Host": "",
24 |         "Port": "8080",
25 |         "Certificate": {
26 |           "Store": "",
27 |           "Location": ""
28 |         }
29 |      }
30 |    ]
31 | }
...

  5. Modify the values in the additional site binding(s) as needed.

    You may also use the following sections for reference:

    • Configure HTTPS with Windows Certificate Store
    • Configure HTTPS with an SSL Certificate and Key
    • Configure HTTPS using Let's Encrypt

  6. Save the file.

  7. Open the Task Manager.

  8. Go to the Services tab.

  9. Restart the OpeniTIngress service.

  1. Go to the Open iT Ingress configuration directory, which is /opt/openit/ingress/configuration by default.

  2. Create a copy of SiteBindings.json and rename the duplicate file to SiteBindings.Override.json.

    Open the existing SiteBindings.Override.json, if there is already one.

  3. In the override file, copy the entire site binding section.

    For example, copy the contents from line 3 to 11.

    SiteBindings.Override.json
     1 | {
 2 |    "SiteBindings":  [
 3 |      { 
 4 |         "Scheme": "http",
 5 |         "Host": "",
 6 |         "Port": "8080",
 7 |         "Certificate": {
 8 |           "Store": "",
 9 |           "Location": ""
10 |         }
11 |      }
12 |    ]
13 | }

  4. Paste the copied contents at the end of the SiteBindings array.

    Add a comma , to separate each site bindings.

    SiteBindings.Override.json
     1 | {
 2 |    "SiteBindings":  [
 3 |      { 
 4 |         "Scheme": "http",
 5 |         "Host": "",
 6 |         "Port": "8080",
 7 |         "Certificate": {
 8 |           "Store": "",
 9 |           "Location": ""
10 |         }
11 |      },
12 |      {
13 |         "Scheme": "http",
14 |         "Host": "",
15 |         "Port": "8080",
16 |         "Certificate": {
17 |           "Store": "",
18 |           "Location": ""
19 |         }
20 |      },
21 |      {
22 |         "Scheme": "http",
23 |         "Host": "",
24 |         "Port": "8080",
25 |         "Certificate": {
26 |           "Store": "",
27 |           "Location": ""
28 |         }
29 |      }
30 |    ]
31 | }
...

  5. Modify the values in the additional site binding(s) as needed.

    You may also use the following sections for reference:

    • Configure HTTPS with an SSL Certificate and Key
    • Configure HTTPS using Let's Encrypt

  6. Save the file.

  7. Run the following command to restart Ingress:

    Command Syntax
    systemctl restart openit-ingress-api

Powered by Open iT ® Open iT Docs All rights reserved.

We value your feedback!

Please take a few minutes to complete our survey and share your thoughts on your recent experience with our documentation.

Take survey

Close