The NI Application Web Server interface provides a simple way to add a self-signed certificate for hosting encrypted websites. However it is often necessary to use a certificate that has been signed by an external certificate authority (CA). This guide will cover the steps for generating the certificate signing request (CSR) and private keys, getting a matching certificate and key combo, and then use it to host a LabVIEW application with the NI application webserver.
There are a couple of ways to generate a CSR, here are the top 3.
NOTE: It is vital that you save a backup of your private key when you generate the CSR. If you get a signed certificate, but are missing the private key, you will not be able to use that signed certificate.
1. Using OpenSSL
OpenSSL is a free open source implementation of the SSL and TLS protocols. Many SSL based tools (Including some from NI) use OpenSSL as their starting point.
This article provides detailed steps for using OpenSSL to generate a CSR
We recommend using OpenSSL for any sort of application that requires lots of customizability, compatibility, and will be hosted on the internet.
2. Using The NI Web Server Configuration
Go to the HTTPs tab and fill out the required information. The CSR and key will be saved underC:\Program Files\National Instruments\Shared\Web Server\certs
3. Using the NI Application Server Web-Based configurationGo to the Open Certificate Signing requests folder and click on the + symbol underneath. Once you fill out the form, it will install a certificate and private key under C:\ProgramData\National Instruments\certstore\open_csrs
There are 2 main ways for generating a certificate from a CSR.
1. Self-signed Certificate.This can be done using either OpenSSL or the NI Application Web-based configuration. Keep in mind that you have to used the software where the original key and CSR were first generated. Also most browsers will block secure connections to websites hosted with a self-signed certificate.
2. Using a certification Authority. A certificate authority is a 3rd party company that can verify the information in your CSR and generate a trusted certificate with your CSR. This is the proper way to create a signed certificate for hosting applications on the web.
Collaborate with other users in our discussion forums
A valid service agreement may be required, and support options vary by country.