/
How to install SSL Certificate

How to install SSL Certificate

Owned by Tony Stoll
Last updated: Feb 14, 2025 by Matthijs Streefland
3 min read

Configuration Article | CA-20231016-TS-01

VDG Sense | Software Installation | HTTPS and certificates

 

Copy the certificate (.crt file) and key (.key file) to the Sense server into the folder: C:\ProgramData\VDG Security\SenseOpenAPI\settings

Now browse to the folder C:\Program Files\VDG Security\Sense\Software\nginx\conf\proxies

Open the file: localhost-ssl.conf for editing.

Modify the following 3 settings in this file:

  1. Set after server_name the correct Sense server IP address.

  2. ssl_certificate "C:\ProgramData\VDG Security\SenseOpenAPI\settings\<your_certificate_name>.crt";

  3. ssl_certificate_key "C:\ProgramData\VDG Security\SenseOpenAPI\settings\<your_key_name>.key";

NOTE: Choose a unique name regarding certificate- and key-name. If these are the same as the defaults they will be overwritten after restarting Sense certificate services.

Save and close the file.

Restart the SenseNginx service via Windows Services app.

Open the browser on the server where the certificate is installed and go to: https://your_server_IP_here

The session should now be secured and with a valid/accepted certificate.

Example with supplied sfx file from costumer

Prerequisites:

  1. Keystore Explorer installed – You can download it from Keystore Explorer.

  2. Your .pfx file ready.

Steps:

  1. Open the .pfx File

    • Launch Keystore Explorer.

    • Click File > Open and select your .pfx file.

    • Enter the password when prompted.

  2. Locate the Certificate

    • Once the keystore is open, you’ll see entries like PrivateKeyEntry or CertificateEntry.

    • Right-click on the certificate you want to export.

  3. Export as a .crt

    • Choose Export > Export Certificate Chain.

    • In the export dialog:

      • Select PEM depending on your requirement:

        • .crt with PEM format is common (Base64-encoded).

      • Save the certificate with a .crt extension. Normally fullchain.crt

  4. Export the Private Key

    • If you need the private key separately:

      • Right-click on the PrivateKeyEntry and choose Export > Export Private Key.

      • Export it as a .key in PEM format.

  1. Copy files to C:\ProgramData\VDG Security\SenseOpenAPI\settings\

  2. doubleclick the fullchain.crt and install it:

Related content

*App connectivity settings
*App connectivity settings
Knowledge Base
More like this
*HTTPS and certificates
*HTTPS and certificates
Knowledge Base
Read with this
*HTTPS support for 2.5 by using Ngnix
*HTTPS support for 2.5 by using Ngnix
Knowledge Base
More like this
*How To Articles
*How To Articles
Knowledge Base
Read with this
*Update Ngnix for 2.5.15
*Update Ngnix for 2.5.15
Knowledge Base
More like this
*VDG Sense Software Downloads
*VDG Sense Software Downloads
Knowledge Base
Read with this