Secure the SEAL Operator Services¶
For security reasons, SEAL Systems strongly recommends configuring the TLS encryption. This is also one step to get rid off the annoying certificate warnings in the browser.
Configure the TLS Encryption¶
-
Get a TLS certificate in PEM format, see the Requirement.
-
Replace the following file containing the private key:
C:\ProgramData\SEAL Systems\config\tls\key.pem
-
Replace the following file containing the public certificate:
C:\ProgramData\SEAL Systems\config\tls\cert.pem
-
Save the CA certificate to the following file:
C:\ProgramData\SEAL Systems\config\tls\ca.pem
-
Configure the path to the directory containing the certificate files.
env: service: any: tag: any: TLS_DIR: 'C:\ProgramData\SEAL Systems\config\tls'
-
If self-signed certificates are used, the following key has to be set to
0
:env: service: any: tag: any: NODE_TLS_REJECT_UNAUTHORIZED: '0'
Next Step¶
Continue with: Secure Consul