Create a secure connection between the web presentation engine client and the server

Creating a secure HTTPS connection between the web presentation engine client and the server requires certificates. You can create and use your own certificates.
FactoryTalk Optix
generates certificate files when the
Certificate file
and
Private key files
are blank. You can generate and locate the certificate files and then upload them to
WebPresentationEngine
object and the browser that you are going to use to create the secure connection.
See Configure presentation engines to configure the
WebPresetationEngine
object.
  1. Configure the host name for the web presentation engine, which is the name of the host computer, to match the host name in the certificate:
    1. In
      Project view
      , select
      WebPresentationEngine
      .
    2. In
      Properties
      , in
      Host Name
      , enter the name of the host computer.
      TIP: The name in the browser certificate must match the host name in the web presentation engine.
    3. Enter the IP address unless you are emulating from your local computer. If you are emulating from your local computer, in
      IP Address
      enter
      0.0.0.0
      .
    4. In
      Protocol
      , select
      https
      .
    5. In
      Port
      , enter the port number.
  2. Select
    Run on Emulator
      to run the project on Emulator and establish the web connection that creates the certificate files.
  3. Copy and save the certificate files to a known location:
    1. Open File Explorer.
    2. To go to the App Data Area, type
      %appdata%
      and press
      Enter
      .
    3. To navigate the folder structure for certificate files created by the Emulator, select
      Local
      Rockwell Automation
      FactoryTalk Optix
      Emulator
      Projects
      .
    4. Select your project.
    5. Select
      ApplicationFiles
      .
    6. Copy and paste the .der and .pem files to a known location.
  4. With
    WebPresentationEngine
    still selected, upload the certificate files in
    Properties
    :
    1. In
      Certificate file
      , select
      BROWSE
      , and navigate to select the .der certificate file from location where you stored the file, select
      Import
      file
      , and choose
      Select
      .
    2. In
      Private key file
      , select
      BROWSE
      , and navigate to select the .pem certificate file from the location where you stored the file, select
      Import files
      , and choose
      Select
      .
  5. Select
    Run on Emulator
    to restart Emulator and ensure you are connecting to the correct instance of the web server.
  6. Export and install the browser certificate:
    1. In the address bar of the established browser connection, select
      Not Secure
      .
    2. In
      About
      after
      Your connection to the site isn't secure,
      select
      >
      and then select
      Show certificate
      .
    3. In
      Certificate Viewer (your computer name)
      , select
      Details
      and select
      Export
      .
    4. Select the .der file that has your computer name before the .der extension.
    5. Navigate to a location that you will remember and select
      Save
      .
    6. Go to the saved location and double-click the .der file.
    7. In
      Certificate
      , select
      Install Certificate
      to install the certificate for the browser.
    8. Leave
      Current User
      selected and select
      Next
      .
    9. Select
      Place all certificates in the following store
      and select
      Browse
      .
    10. In
      Select Certificates Store
      , select
      Trusted Root Certificate Authorities
      , and then select
      OK
      .
    11. In
      Completing the Certificate Import Wizard
      , select
      Next
      , and then select
      Finish
      .
    12. When the import is successful select
      OK
      twice.
  7. To establish your connection from the web to the server, in the browser, enter
    https:\\hostname:port
    . For example, enter
    https:\\(computername):8080
    for the Emulator.
Provide Feedback
Have questions or feedback about this documentation? Please submit your feedback here.