This step is optional. If you want to use the certificate that ships with NetMon, proceed to Select Applications for Packet Capture.

NetMon ships with a self-signed certificate that is not trusted. These instructions explain how to replace that certificate with your own trusted SSL certificate if you want to assure users that the site is trustworthy.

To add a custom SSL certificate:

  1. Ensure that your new, trusted server cert and key files are named “server.crt” and “server.key.”

    If your cert and key files have unique names, such as “NetMon.crt” or “NetMon.key,” NetMon does not recognize your certificate.
  2. On your NetMon server, go to /etc/nginx.
  3. Copy your cert and key files into /etc/nginx. If prompted to overwrite the existing cert and key files, select Yes.
  4. SSH to your NetMon instance using the logrhythm user.
  5. Run the following command to ensure that your custom files are owned by the nginx user:
    cd /etc/nginx; sudo chown nginx:nginx server.crt; sudo chown nginx:nginx server.key
  6. Run the following command to restart nginx:
    sudo systemctl restart nginx
    Your custom cert is installed.