Transcription

EventLog Analyzer:GUIDE TO INSTALLSSL CERTIFICATE 2017 ManageEngine. All rights reserved.www.eventloganalyzer.com

ContentsDocument Summary. 2EventLog Analyzer Overview. 2Why do you need SSL certification?.2Steps for enabling SSL:Step 1: Generate CSR and submit it to certification authority (CA) . 3Step 2: Add the CA signed certificates to the keystore . 5Step 3: Bind the certification with EventLog Analyzer. 7GlossarySSL .8SSL Certificate . 8Certifying Authority . 8CSR .8Keystore. 8www.eventloganalyzer.com demo.eventloganalyzer.com [email protected]

Document SummaryThe purpose of this document is to guide you through the process of securing EventLog Analyzer withSSL certification. In doing so, you can ensure that the connection between users’ web browser andEventLog Analyzer is secure from various threats including data theft. This document covers:An overview of EventLog AnalyzerNeed for SSL CertificationSteps to enable SSLEventLog Analyzer OverviewEventLog Analyzer is an IT compliance and SIEM solution for your network. Its features include:Collects, analyzes, and archives log data from sources across your physical, virtual,cloud environments.Provides a vast range of predefined reports, and the freedom to design custom reportsthat help meeting your specific needs.Generates real time alerts so you can combat potential security threats.Helps you meet all mandatory IT compliance requirements.Securely archives your logs, and has a powerful search engine that facilitates in-depthforensic analyses.Why do you need SSL Certification?EventLog Analyzer is a web-based solution which offers access to its various features from any hoston the network. To secure the connection between the users’ web browser and the EventLog Analyzerserver, the connection between these two entities must be secured.Secure Sockets Layer (SSL) is the de facto standard on the web for establishing an encrypted linkbetween a server and a web browser. It ensures that all data transferred between the server and thebrowser remains secure.www.eventloganalyzer.com demo.eventloganalyzer.com [email protected]

Steps for enabling SSLThe following steps will guide you through the process for enabling SSL in EventLog Analyzer:Step 1: Generate CSR and submit it to your certifying authorityLog in to EventLog Analyzer using admin credentials.Go to the Settings Tab System Settings Connection Settings Configure Connections.Select the Enable SSL Port [https] checkbox and click on the SSL Certification Tool button.The SSL Tool and Guide page opens. Enter the required details in the form provided:The NetBIOS or FQDN name of the server inCommon Namewhich EventLog Analyzer is running.The department name that you want toOrganizational Unitappear in the certification.Provide the legal name of your organization.OrganizationEnter the city name as provided in yourCityorganization’s registered address.Enter the State/Province as provided inState/Provinceyour organization’s registered address.Provide the 2-letter code of the country yourCountry Codeorganization is located in.Enter a password of atleast 6 characters.PasswordSpecify the number of days the certificate will be valid.ValidityIf no value is provided, the validity is taken as 90 days.Provide the public key length. Larger the length,stronger the key. Default size is 1024 bits.Public Key LengthThe length should be a multiple of 64.www.eventloganalyzer.com demo.eventloganalyzer.com [email protected]

Once you have entered the details, click on Generate CSR.Submit the CSR file to your certifying authority (CA). You can locate the CSR file at EventLog Analyzer installation directory \Certificates.www.eventloganalyzer.com demo.eventloganalyzer.com [email protected]

Step 2: Add the CA signed certificates to the keystoreUnzip the certificates returned by your CA to the following path: EventLog Analyzer installation directory \jre\bin.Open the command prompt and navigate to the path EventLog Analyzer installation directory \jre\bin.Run the commands corresponding to your certifying authority:For GoDaddy certificates:keytool -import -alias root -keystore Eventlog.keystore -trustcacerts -file gd bundle.crtkeytool -import -alias cross -keystore Eventlog.keystore -trustcacerts -file gd cross.crtkeytool -import -alias intermed -keystore Eventlog.keystore -trustcacerts -file gd intermed.crtkeytool -import -alias tomcat -keystore Eventlog.keystore -trustcacerts -file Eventlog.crtFor Verisign certificates:keytool -import -alias intermediateCA -keystore Eventlog.keystore -trustcacerts -file your intermediate certificate .cerkeytool -import -alias tomcat -keystore Eventlog.keystore -trustcacerts -file Eventlog.cerFor Comodo certificates:keytool -import -trustcacerts -alias root -file AddTrustExternalCARoot.crt storeEventlog.keystorekeytool -import -trustcacerts -alias ComodoUTNServer -file ComodoUTNServerCA.crt -keystoreEventlog.keystorekeytool -import -trustcacerts -alias essentialSSL -file essentialSSLCA.crt -keystoreEventlog.keystorewww.eventloganalyzer.com demo.eventloganalyzer.com [email protected]

For Entrust certificates:keytool -import -alias Entrust L1C -keystore Eventlog.keystore -trustcacerts -file entrust root.cerkeytool -import -alias Entrust 2048 chain -keystore Eventlog.keystore -trustcacerts -fileentrust 2048 ssl.cerkeytool -import -alias -keystore keystore-name.keystore -trustcacerts -file domain-name .cerFor Thawte certificates:Purchased directly from Thawtekeytool -import -trustcacerts -alias tomcat -file certificate-name .p7b -keystore Eventlog.keystorePurchased through the Thawte reseller channelkeytool -import -trustcacerts -alias thawteca -file SSL PrimaryCA .cer -keystore Eventlog.keystorekeytool -import -trustcacerts -alias thawtecasec -file SSL SecondaryCA .cer -keystoreEventlog.keystorekeytool -import -trustcacerts -alias tomcat -file certificate-name .cer -keystore Eventlog.keystoreNote: If your certifying authority is not in the list provided above, please contact them to get thecommands required to add their certificates to the keystore.www.eventloganalyzer.com demo.eventloganalyzer.com [email protected]

Step 3: Bind the certificates with EventLog AnalyzerThis configures the EventLog Analyzer server to use the keystore with your SSL certificate.Similar to Step 1,Go to the Settings Tab System Settings Connection Settings ConfigureConnections.Select the Enable SSL Port [https] checkbox and click on the SSL Certification Toolbutton.The SSL Tool and Guide page opens. Enter the required details in the form provided.Once you have entered the details, click on Apply Selfsigned Certificate.www.eventloganalyzer.com demo.eventloganalyzer.com [email protected]

GlossarySSLAcronym for Secure Socket Layer, SSL is an encryption technology to secure the data exchangebetween a website and its visitor's web browser. Normally, when a user communicates with awebsite, say submits his credit card information, the data travels to the server as plain text, which issusceptible to data theft. On the other hand if this data is encrypted, then no eavesdropper can readit. Thus, it's very important to secure a website with SSL.SSL CertificateThis is a digital identity of a company, which ensures that a visitor is talking only to its intendedwebsite and whatever data he submits to the site is encoded and reaches only the intended site. Thissystem is analogous to banks recognizing their customers by their signatures. In this case, thebrowsers (thereby the end-users) are programmed to trust these CA presented certificates.Certifying AuthorityRegulatory organizations, with the help of standard policies, issue certificates to a domain declaringit trustworthy. Every certificate they generate is unique to the company they are certifying, whichmakes identification easy. CAs secure all necessary information about a company before issuing acertificate for it and also keep updating it in their records, which adds to the trustworthiness. Some ofthe popular CAs are Verisign, Comodo & GoDaddy.CSRIn order for a CA to generate an SSL certificate for a company, it first collects the information aboutthe company and other identifiers such as public key (digital signature), and then binds them all withits certificate (which could be an encrypted token or something similar). In doing so, it generates aunique identifier for the company. Thus every certificate issuance process begins with a "certificaterequest" from the company. Certifying Authorities refer to this process as "Certificate SigningRequest". The Certifying Authorities accept the company information and digital signatures in aspecial form of file - the ".csr" file.KeystoreKeystore is specifically designed to store various kinds of encryption information.www.eventloganalyzer.com demo.eventloganalyzer.com [email protected]

What's New inEventLog Analyzer?Stay up to date with our latest features,upcoming releases, events, and blogs.Learn moreAbout ManageEngineManageEngine delivers the real-time IT management tools that empower an IT team to meet an organization’s need forreal-timeservices and support. Worldwide, more than 60,000 established and emerging enterprises — including more than 60percent of the Fortune 500 — rely on ManageEngine products to ensure the optimal performance of their critical ITinfrastructure, including networks, servers, applications, desktops and more. ManageEngine is a division of Zoho Corp. withoffices worldwide, including the United States, United Kingdom, India, Japan and China.About EventLog AnalyzerEventLog Analyzer is a comprehensive IT compliance and log management software for SIEM. It provides detailed insightsinto your machine logs in the form of reports to help mitigate threats in order to achieve complete network alyzer30-day trial and try this feature now.www.eventloganalyzer.com

Go to the Settings Tab System Settings Connection Settings Configure Connections. Select the Enable SSL Port [https] checkbox and click on the SSL Certification Tool button. The SSL Tool and Guide page opens. Enter the required details in the form provided. Once you have e