Submit a ticketCall us

AnnouncementsFace your biggest database issues head-on

Our new eCourse helps you navigate SQL Server performance blocks by teaching you how to recognize and deal with the three DBA Disruptors: Performance Hog, Blame Shifter, and Query Blocker. Register today to learn how to defend your environment and fend off menacing disruptions.

Register for your free eCourse.

Home > Success Center > DameWare Remote Support & Mini Remote Control > DameWare Documentation > Dameware Centralized Installation Guide > Bind a self-signed certificate to prevent warnings during installation of the Dameware client agent

Bind a self-signed certificate to prevent warnings during installation of the Dameware client agent

Table of contents

Updated: September 12, 2017

The Dameware Internet Proxy installs and binds a self-signed certificate to port 443 for secure communication between the Dameware applications and Dameware agents. If a certificate is already bound to the port, Dameware does not install the self-signed certificate.

Users who do not have the Mini Remote Control client agent installed on their computers are prompted to download and install either an Internet Session agent or a Mini Remote Control client agent from the Dameware Internet Proxy. If you use the self-signed certificate, your users encounter security warnings during the download and installation process.

To prevent these security warnings, install and bind a certificate from a certificate authority to port 443 or your designated Dameware Internet Proxy port.

  1. After you have received your certificate from a third-party certificate authority, log in to the Dameware Internet Proxy computer as an administrator.

    The 3rd party certificate must have a private key on it.

  2. Run certmgr.msc.
  3. Copy the certificate to the personal and trusted root certification authentication folder.
  4. Double-click the copied certificate, and click Install certificate.
  5. Run services.msc.
  6. Stop the Dameware Server service.
  7. Open a command line prompt, and run the following command to remove the existing certificate: netsh http delete sslcert ipport=0.0.0.0:443

    If you use a port number other than 443, enter that port number.

  8. In the Certificate Manager, view the details of the certificate you installed, and copy the certificate hash.
  9. In the command line prompt, run the following command to bind the certificate to the port: netsh http add sslcert ipport=0.0.0.0:443 certhash={certificate_hash} appid={appid-formated_number} certstorename=root

    If you use a port number other than443, enter that port number.

  10. Replace certificate_hash with the certificate hash you copied and replace appid-formated_number with a number in the appid format, such as {00112233-4455-6677-8899-AABBCCDDEEFF}.
  11. Start the Dameware Server service.
Last modified

Tags

Classifications

Public