SSL Certificates
The SSL Certificates settings in SmarterTrack allow administrators to manage and configure SSL certificates for secure HTTPS communication within the management and portal interfaces. These settings ensure that all traffic between users and the SmarterTrack server is encrypted, helping protect sensitive data and maintain compliance with security best practices.
To access SSL Certificates, log in to the SmarterTrack management interface as a System Administrator. From the top menu, click More, then select Settings from the dropdown. SSL Certificates will display in the left-hand navigation panel.
The SSL Certificates page is divided into two tabs: Options and Certificates, allowing administrators to configure general SSL options and manage certificate assignments.
Options Tab
The Options tab contains fields for entering organization information, certificate paths, and enabling automated certificate management.
- Email Address for Certificate Notifications - The address where system notifications about SSL certificate status, such as expiration warnings, will be sent.
- Certificate Store Password - The password required to access the Windows certificate store (if applicable).
- Folder Path for the Certificates - The file path where SSL certificate files are stored on the server.
- Organization - The name of the organization that the SSL certificate represents.
- Organization Unit - The department or division within the organization responsible for managing the certificate.
- City - The city in which the organization is located.
- State/Province - The state or province where the organization operates.
- Country Code - The two-letter ISO country code for the organization (e.g., US, CA, GB).
- Enable Automatic Certificates - Enables the use of automated SSL certificate generation and renewal services, such as Let’s Encrypt.
Once all required fields are filled out, click Save to apply your settings.
Certificates Tab
The Certificates tab displays a list of installed or configured SSL certificates for the system. Administrators can add or remove host headers and manage the certificates assigned to those hosts. You can generate certificates directly in SmarterTrack, there’s no need for third-party tools such as Certbot or Certify the Web when using IIS and the built in Certificate Authority. SmarterTrack automatically generates the certificate, stores it, and places it in a folder for IIS to reference, typically through the Centralized Certificate Store (CCS).
To generate and apply a certificate:
- log in to the SmarterTrack management interface as a System Administrator. From the top menu, click More, then select Settings from the dropdown. SSL Certificates will display in the left-hand navigation panel. Then select SSL Certificates, click on the Certificates tab.
- Create a new certificate by specifying the hostname (for example, portal.yourcompany.com).
- SmarterTrack will handle the generation and placement of the certificate automatically.
- In IIS, confirm that the certificate appears in the Centralized Certificate Store and bind it to your SmarterTrack sites for HTTPS.
Using SSL Certificates in SmarterTrack
SmarterTrack includes a built-in Certificate Authority (CA) that allows administrators to generate and manage SSL certificates directly within the product. These certificates secure traffic for the Portal and Management Interface, encrypting communication between users and the server to protect logins, tickets, and chats.
Wildcard Certificates
SmarterTrack does not support generating wildcard certificates within the product. If you need a wildcard certificate (for example, *.yourcompany.com), you’ll need to generate it using an external Certificate Authority (CA) such as Certify the Web or another source of your choice, then place it in a folder for IIS to reference, typically through the Centralized Certificate Store (CCS). SmarterTrack can use externally created wildcard certificates but cannot create them.
External Certificate Authorities
If you prefer to use your own CA, for instance, for wildcard or organizationally issued certificates, you can do so. That process is covered in a separate Knowledge Base article on setting up your own CA and configuring SmarterTrack to use certificates generated externally.
Configuring “Certify the Web” (Optional)
If you’re using Certify the Web (the full name of the client) to generate external certificates, you can still point SmarterTrack to use them:
- In Certify the Web, create and request your certificate for the appropriate IIS site.
- Ensure the certificate is renewed automatically and stored in a location accessible to IIS.