About using HTTPS protocol

For secure communication, the HTTPS protocol is recommended.
If the HTTPS protocol is enabled, all
FactoryTalk View SE
 client and server components will use HTTPS for communication with the default port number 443.
If you select to use trusted certificates only, make sure that:
  • The certificate is issued to the computer name.
  • The certificate is trusted on each SE client and server computers.
    TIP:
    Computers of a redundant server pair must trust each other's certificate.
    Add the certificate to the local machine certificate store, instead of the current user certificate store. Otherwise, some features such as redundancy may not work correctly. For more information about certificate stores, see Microsoft Docs at https://learn.microsoft.com/en-us/windows-hardware/drivers/install/local-machine-and-current-user-certificate-stores.
  • The webpage
    https://computername/RSViewSE
     can be correctly opened, where
    computername
     is the name of the SE server computer.
For more information about managing trusted certificates, see Microsoft TechNet at
http://technet.microsoft.com/en-us/library/cc754841(v=ws.11).aspx
.
Before using HTTPS, on the SE server and SE Studio computers, make sure to configure the HTTPS binding for your website in IIS.
TIP:
If you change to enable or disable the HTTPS policy, restart all server and client computers to take effect.
The HTTPS Protocol policy takes precedence over the Custom Website policy. If you enable HTTPS, we recommend that you disable the Custom Website policy.
You can enable the HTTPS protocol using the
FactoryTalk View SE
 Website Setup tool or changing the Product Policies for HTTPS in FactoryTalk Services Platform.
To enable the HTTPS protocol with the Website Setup tool
  1. From any computer connected to the FactoryTalk Directory, open the
    FactoryTalk View
     SE Website Setup tool, and then in
    HTTPS protocol
    , click
    Enable
    .
  2. (optional) To use trusted certificate only, select the
    Use trusted certificate only
     checkbox.
  3. Restart all computers connected to that FactoryTalk Directory.
To enable the HTTPS protocol with FactoryTalk Product Policies
  1. From any computer connected to the FactoryTalk Directory, open the FactoryTalk Administration Console.
  2. Select
    System > Policies > Product Policies > FactoryTalk View SE > HTTPS Protocol
    .
  3. Change the
    Use HTTPS
     property to
    Enabled
    .
    We recommend that you use trusted certificates for HTTSP communication.
    FTSP_HTTPS
After you've enabled the HTTPS protocol, you can enable the
RSViewSE
 site's
Require SSL
 setting, deactivating the HTTP protocol (with the default port 80):
  1. Open Internet Information Services (IIS) Manager.
  2. In the
    Connections
     pane, select
    Sites > Default Web Site > RSViewSE
    .
  3. Double-click
    SSL Settings
    .
  4. Select the
    Require SSL
     check box.
  5. In the
    Actions
     pane, click
    Apply
    .
TIP: If you decide to disable HTTPS, remember to clear this
Require SSL
 setting.
Provide Feedback
Have questions or feedback about this documentation? Please submit your feedback here.
Normal