One of the prerequisites for database encryption is to install an X.509 certificate with both public and private keys. This certificate needs to be installed into a key container and be accessible by accounts used to run Cyara Platform components.
Cyara recommends installing the key under local computer/personal
store, and granting access to the private key to those user accounts that need
it:
- IIS Application Pool user that is running the Cyara Web Portal.
- Account used for Voice Scheduler and Omni Scheduler on server(s) running these services (service Log-on Account).
To Install on Local Machine
Use the administrator account to install the certificates into local computer/personal store by following the steps below.
Grant Access to Private Key
To grant access to the private key, follow the steps below:
-
Open a Command Prompt and run the command:
mmc.exe. A screen as shown below appears:
-
Click
File >
Add/Remove Snap-in. A screen as shown below
appears:
- Select Certificates and click the Add > button.
-
Select the
Computer account option on the following
screen and click
Next.
-
Select the
Local computer... option in the next dialog
box:
- Click Finish and then click OK. The Certificate is added to the Console Root.
-
Click
Certificates (Local Computer) >
Personal, then the
Certificates folder and then select the
certificate from the right-hand panel. Then, right-click it and select
Manage Private Keys.
-
Click the
Add button on the Permissions dialog box.
- Locate the applicable account that needs access to the private key. This is either the Service Account (if services aren't running as Local System) and it's IIS Application Pool User Account(s), and click OK.
-
Ensure only
Read permission is given to the relevant
account and then click
OK.
Comments
0 comments
Please sign in to leave a comment.