Skip to main content

HTTPS Setup

Setting up HTTPS for Nectari enables secure, encrypted access to your web applications and administration tools. The steps below show how to uninstall previous versions (if necessary), bind your SSL certificate to the Central Point Configurator, and remove any legacy certificate bindings.

Uninstall a previous version

important

Only uninstall Nectari if you are updating from a version older than Version 2022 Rlease 1.

  1. Check the port number currently configured for the BI Service:
    • Open C:\Program Files\Nectari\Nectari Server\Server\BIService.NetInstaller.exe.config.
    • Find the <baseAddresses> tag and note the port number for re-use during installation.
    • Make sure the port is not blocked by a firewall.
  2. Open Control Panel, select Programs, and choose Programs and Features.
  3. Select Nectari and click Uninstall.
  4. Follow the prompts to remove the software.

Bind the Central Point Configurator to HTTPS

Before proceeding, confirm with the customer that Central Point Configurator and Web Server DNS bindings are set up correctly—this means the host name from the certificate is linked to the correct IP in the DNS or hosts file.

  1. Press Windows key + R, type inetmgr, and press Enter to open IIS Manager.
  2. In the left pane, expand the server node and select Sites.
  3. Right-click CPConfigurator and select Edit Bindings...
  4. In Site Bindings, click Add...
  5. Select https as the type. By default, port 443 is used for HTTPS—leave this as is unless another port is required.
  6. Enter the Host name:
    • For wildcard certificates, use webcp.*your-domain.com*.
    • For single-name certificates, use an exact name from the certificate’s authorized list.
  7. In SSL certificate, select the certificate you installed previously, then click OK.
  8. Return to Site Bindings. Select the http binding and click Remove.
  9. Click OK and close Site Bindings.

Remove old certificate bindings

As of Version 2024 Release 3, you no longer need to manually bind or unbind certificates to port 4504. If old bindings exist, remove them as follows:

Delete certificate binding:

netsh http delete sslcert ipport=0.0.0.0:4504

Delete reserved port:

netsh http delete urlacl url=https://+:4504/