What is the process of applying .cer certificate file on Spotfire GUI?

[Manas Chatterjee]

Since Spotfire GUI is exposed to external world, hence enabling https access is important. Also to make the portal more secure .cer certificate file to be applied on https enabled site.

If there is standard set of steps to apply certificate, it will be really helpful for me. Please let me know.

[Fredrik Rosell]

Hello,

As you mentioned .cer files, I assume you may be interested in using X.509 certificates, so starting with a few references for you to check specifically about using that, and then a few of a more general nature that may also be of value depending on your needs:

Authentication using X.509 client certificates

https://docs.tibco.com/pub/spotfire_server/latest/doc/html/TIB_sfire_server_tsas_admin_help/server/topics/authentication_using_x.509_client_certificates.html

Two-factor authentication (note: you can combine other authentication methods with X.509 client certificates)

https://docs.tibco.com/pub/spotfire_server/latest/doc/html/TIB_sfire_server_tsas_admin_help/server/topics/two-factor_authentication.html

HTTPS

https://docs.tibco.com/pub/spotfire_server/latest/doc/html/TIB_sfire_server_tsas_admin_help/server/topics/https.html

User authentication

https://docs.tibco.com/pub/spotfire_server/latest/doc/html/TIB_sfire_server_tsas_admin_help/server/topics/user_authentication.html

How to configure HTTPS using a self signed certificate, CA issued certificate (without private key) or CA issued certificate (with private key) in TIBCO Spotfire Server

https://support.tibco.com/s/article/How-to-configure-HTTPS-using-self-signed-certificate-CA-issued-certificate-without-private-key-and-CA-issued-certificate-with-private-key-in-TIBCO-Spotfire-Server

TIBCO Spotfire® Server and Environment Security

https://docs.tibco.com/pub/spotfire_server/12.4.0/doc/html/TIB_sfire_server_and_environment_security/servsecurity-homepage.html

[ken]

To apply a .cer certificate file in Spotfire, you typically need to follow these steps:

1. Access Spotfire Server Configuration:

   • Log in to the Spotfire Server Administration Console.
   • Navigate to the "Configuration" section.

2. Locate the Certificate Settings:

   • Look for options related to SSL/TLS certificates or security settings.

3. Upload the Certificate:

   • There should be an option to upload or import a certificate.
   • Select the .cer certificate file from your local system.

4. Configure Certificate Settings:

   • After uploading the certificate, you may need to configure additional settings such as the certificate alias, password (if applicable), and the type of certificate (e.g., server certificate, client certificate).

5. Apply Changes:

   • Once the certificate is uploaded and configured, apply the changes to save the settings.

6. Restart Spotfire Server (if required):

   • Some changes might require a restart of the Spotfire Server for them to take effect. Check if this is necessary and proceed accordingly.

7. Test the Configuration:

   • After applying the certificate, it's crucial to test the configuration to ensure that Spotfire Server is using the certificate correctly and that there are no issues with SSL/TLS connections.

8. Verify Access:

   • Test access to Spotfire via its GUI or any other client applications. Ensure that the certificate is being used for secure connections.

The exact steps might vary slightly depending on the version of Spotfire you are using and your specific environment. It's always a good idea to consult the official documentation or seek guidance from your system administrator if you're unsure about any step.