Skip to main content
Skip table of contents

Configure SSL Certificates for the SOAP API

The LogRhythm SOAP API installer creates a self-signed certificate to enable HTTPS/SSL encryption. Client computers that connect to the LogRhythm SOAP API must trust this certificate. This can be accomplished by replacing the self-signed certificate with a trusted certificate chain or by adding the self-signed certificate to a trusted store on client systems.

Replace the Self-Signed Certificate

  1. Generate a trusted certificate for the LogRhythm SOAP API host.
  2. From the Web Service server, run the Microsoft Management Console (mmc.exe).
  3. Select File, and then Add/Remove Snap-in.
  4. Add the Certificates Snap-in.
  5. Select Computer account, and then Local computer.
  6. Import the trusted certificate with its private key into the Personal store.
  7. Open the Internet Information Services (IIS) Manager.
  8. Browse to the LogRhythm website.
  9. Select Bindings.
  10. Edit the https binding and select the new SSL certificate.

Trust the Self-Signed Certificate from a Client PC (All Users)

  1. From the Web Service server, run the Microsoft Management Console (mmc.exe).
  2. Select File, and then Add/Remove Snap-in.
  3. Add the Certificates Snap-in.
  4. Select Computer account, and then Local computer.
  5. From the Personal store, export the LogRhythm Self-Signed Certificate. Do not include the private key.
  6. Run the Microsoft Management Console with the Certificate Snap-in on the client system.
  7. Import the LogRhythm Self-Signed Certificate file into the Trusted Root Certification Authorities store.

    The certificate will be trusted for all users of this system.

Trust the Self-Signed Certificate from a Client PC (Current User Only)

  1. From the client system, run Internet Explorer.
  2. Browse to https://<fully-qualified-web-service-host-name>/. A security certificate error appears.
  3. Click Continue to this website.
  4. In the address bar, click Certificate error, and then View certificates.
  5. Click the Install Certificate button.
  6. On the Certificate Store page, be sure to select Place all certificates in the following store, and then select the Trusted Root Certification Authorities store.
    The certificate will be trusted for the current user only, not all users.
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close