Chat now with support
Chat with Support

KACE Systems Deployment Appliance 4.1 - Administrator Guide

About the KACE Systems Deployment Appliance (K2000) Getting started Using the Dashboard Configuring the K2000 Setting up user accounts and user authentication Configuring security settings Preparing for deployment Managing device inventory Using labels Creating a Windows Boot Environment Managing drivers Capturing images Capturing user states Creating scripted installations Creating a task sequence Automating deployments Performing manual deployments Imaging Mac devices About the Remote Site Appliance Importing and exporting appliance components Managing disk space Troubleshooting appliance issues Updating appliance software About us Legal notices Glossary

Enable SSL using an existing certificate

Enable SSL using an existing certificate

By default, SSL is disabled. You can use an existing SSL certificate, an intermediate certificate, or a self-signed certificate to run your K2000 appliance on a secure web browser. Using an existing certificate requires having an SSL private key and ensuring that port 80 is open.

1.
On the left navigation pane, click Settings to display the Control Panel, then click Security to display the Security Settings page.
2.
Click Enable SSL and click I already have an SSL certificate, Can I use it?
3.
Click Use My Certificate.
4.
Under Optional SSL Settings, select one of the following certificate types:

The secure web browser using https is available.

Generate private key for new SSL certificate

Generate private key for new SSL certificate

By default, SSL is disabled. You can generate a private key to enable SSL after you generate a new certificate. You can use a valid self-signed certificate if you have a private key or a PKCS-12 file, and the private key and certificate were generated from the same Certificate Signing Request (CSR).

1.
On the left navigation pane, click Settings to display the Control Panel, then click Security to display the Security Settings page.
2.
Click Enable SSL to use a new certificate or a valid self-signed SSL certificate. Note that Quest KACE does not recommend using a self-signed certificate.
1.
Click Get New SSL Certificate to display the K2000 Advanced SSL Settings wizard.
Click Can I use a self-signed certificate instead?, then click Save and Restart Apache.

Disable SSL

Disable SSL

You can disable the secure web browser that the appliance is running on by disabling SSL (Secure Sockets Layer).

1.
On the left navigation pane, click Settings to display the Control Panel, then click Security to display the Security Settings page.
2.
Click Enabled ports: 80, 443 (change).
4.
Click Apply Changes.

The HTTPS browser is now unavailable.

Enable offboard access to database

Enable offboard access to database

You can enable offboard database access to allow external programs, such as Crystal Reports or Excel® to query the K2000 database so that you can create your own reports. By default, the appliance does not allow external connections to the database.

The account for external access to the database is username: report and password: box747.

1.
On the left navigation pane, click Settings to display the Control Panel, then click Security to display the Security Settings page.
2.
Select the Allow Offboard Database Access check box.
3.
Click Save.

You might have to reboot the appliance before external programs can query the K2000 appliance database.

Related Documents