For security reasons, it is possible to configure Open Bee™ Scan Capture Server to use the Https protocol with an SSL certificate.
For security and performance reasons, Open Bee™ Scan Capture Server and Open Bee™ Scan Capture consoles must communicate over a local network.
How to set up an SSL certificate
1 – The following parameters must be added to the “start-capture.bat” file located in the bin folder of the installation directory:
-Dhttp.port=disabled -Dhttps.port=9443 -Dhttps.keyStore="C:UsersopenbeeCertificatCaptureCert.jks" -Dhttps.protocols="TLSv1, TLSv1.1, TLSv1.2"- “9443” is a free port number
- “C:UsersopenbeeCertificateCaptureCert.jks” is the path to the JKS keystore.
Alternative: pfx/p12 format certificate
-Dplay.server.https.keyStore.path="C:path-to-file.pfx" -Dplay.server.https.keyStore.type="pkcs12" -Dplay.server.https.protocols="TLSv1, TLSv1.1, TLSv1.2" -Dplay.server.https.keyStore.password="pwd"Optional additional settings
-Dhttps.keyStorePassword="MyPassword"2 – Just restart Open Bee™ Scan Capture Server.
CAUTION: At this time, it is not possible to use the Open Bee™ Scan Capture with a signed auto-certificate, unless the certificate is known to the operating system.
Using an HTTPS Portal
Be careful if the portal is also in HTTPS, you may need to add this option in the Capture start-capture.bat
-Dplay.ws.ssl.loose.acceptAnyCertificate=true