Views:

Question:
How can Web Components be configured to use HTTPS?

Answer:
In generell you have to do the following IIS Manager:

  • Register the certificate. Server certificates > Import
  • Change the binding of the IIS web site to be accessible over HTTPS
  • Remove the binding for HTTP (optional)

*Note: If you use a self-signed certificate, ensure your CA is specified as a "trusted root CA" on all client PCs. Import the certificate of your root CA in the certificate stores of all computer and user accounts in your domain using GPOs. You will find further information here:

In DocuWare do the following:

  • DocuWare Administration:
    • Change the URL in the Web Connection section HTTP-Root directory
    • Change URL in the settings of the web instance (Not necessary anymore since DocuWare 6.5)
  • Job Server
    • Change web.config of Job Server application (uncomment the https binding, comment the http binding)(Not necessary anymore since DocuWare 6.1)
    • Open your JobServer Folder (Default Path: ..\DocuWare\Web\JobServer) and open the web.config in Notepad
    • Search for the section <services> and replace it with the following:
      <services>
        <service behaviorConfiguration="repositoryBehavior" name="DocuWare.Jobs.Repository">
          <endpoint binding="webHttpBinding" bindingConfiguration="repositoryHttpsConfig" behaviorConfiguration="POX" contract="DocuWare.Jobs.IRepository" />
          <!--
          <endpoint binding="webHttpBinding" bindingConfiguration="repositoryHttpConfig" behaviorConfiguration="POX" contract="DocuWare.Jobs.IRepository" />
          -->
        </service>
      </services>
    • Save. No restart required!
  • Web Client Settings
    • Change web.config of Settings Service (Not necessary anymore since DocuWare 6)
    • Open your Settings Folder (Default Path: ..\DocuWare\Web\Settings) and open the web.config in Notepad
    • Search for the section <services> and replace it with the following:
       <services>
        <service name="DocuWare.WAFServices.SettingsService">
          <endpoint address="binary" binding="customBinding" contract="DocuWare.WAFServices.ISettingsService" bindingConfiguration="binaryHttpsBinding"/>
          <!--
          <endpoint address="ntlm" binding="basicHttpBinding" contract="DocuWare.WAFServices.ISettingsService" bindingConfiguration="ntlmBasicHttpStreaming"/>
          -->
        </service>
        <service name="DocuWare.WAFServices.ContentService">
          <endpoint address="binary" binding="customBinding" contract="DocuWare.WAFServices.IContentService" bindingConfiguration="binaryHttpsBinding"/>
          <!--<endpoint address="ntlm" binding="basicHttpBinding" contract="DocuWare.WAFServices.IContentService" bindingConfiguration="ntlmBasicHttpStreaming"/>-->
        </service>
      </services>
    • Save. No restart required!
*Note: when using client certificates, the usage of client certificates is possible only starting with DocuWare version 6.1. Former versions of DocuWare do not support client certificates. In order to load the Webbaskets correctly you will need to change following setting (Not necessary anymore since DocuWare 6.5):
  • In "C:\inetpub\wwwroot\DWWebClient\web.config" for "HttpsStreaming" change the value for "clientCredentialType" from "None" to "Certificate":
    <binding name="HttpsStreaming" maxReceivedMessageSize="2147483647" ... >
     <security mode="Transport">
      <transport clientCredentialType="Certificate" />
     </security>
  • Save. No restart required!