Note: The following steps are applicable during Presence Assistant Component Installation only when you want to authenticate not just via credentials but also via security certificate issued by your IT.
One of the requirements for building service-oriented system is to protect the transmitted data. To guarantee the safety of this data, Luware products provide the possibility to use certificate-based encryption and verification during the communication between a client and a server. The client identifies itself with this certificate. The service accesses the server to confirm the authenticity of the certificate - and in extension - the client.
Certificate Setup during Installation
The certificate security can be configured during installation of Luware components and services. There are two sets of settings that can be configured:
- Server settings: The server settings specify which settings the service will use to validate other services when they try to reach this service.
- Client settings: The client settings specify which settings the service will use while connecting to other services.
To configure certificate security select 'Configure Certificate Security' flag during installation:
Upon clicking 'Next' button with this flag enabled you will be presented an extra step to configure options:
A certificate thumbprint is a hexadecimal string that uniquely identifies a certificate. A thumbprint is calculated from the content of the certificate using a thumbprint algorithm.
→ This is to be generated via Microsoft Management Console. Read more about it on the "Retrieve Thumbprint of a Certificate" page from Microsoft.
When copied from the source the thumbprint is unicode encoded but you need it in plain ASCII → Notepad++ or any equivalent editor is a great help to convert it.
Don't forget to set up permissions for the certificate private key so that the service account can access it.