Update Web Server Certificate

  • URL:https://<portaladmin>/security/sslCertificates/update(POST only)
  • Required Capability:Administrator
  • Version Introduced:10.3

Description

Use this operation to configure the web server certificate, SSL protocols, and cipher suites used by the portal.

Parameters

ParameterDetails
webServerCertificateAlias

The name of the certificate. This is a required parameter. The certificate must be already present in the portal.

sslProtocols

The SSL protocols the portal will use. Valid options are TLSv1, TLSv1.1, and TLSv1.2; values must be comma separated. By default, these options are all enabled.

Note:

If you are planning to disable TLSv1 from the portal, you need to ensure the web server hosting the Web Adaptor is able to fully communicate over TLSv1.1 or TLSv1.2. If you are using a Java Web Adaptor, the web server hosting the Web Adaptor must be using Java 8.

cipherSuites

The cipher suites the portal will use. Valid options are:

  • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
  • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
  • TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
  • TLS_RSA_WITH_AES_128_GCM_SHA256
  • TLS_RSA_WITH_AES_128_CBC_SHA256
  • TLS_RSA_WITH_AES_128_CBC_SHA
  • TLS_RSA_WITH_3DES_EDE_CBC_SHA
By default, all of the above options are enabled. Values must be comma separated.

HSTSEnabled

A boolean that indicates if HTTP Strict Transport Security (HSTS) is being used by the portal. See Enforce strict HTTPS communication for more information.

Accepted values: true | false

Default value: false

f

The response format. The default response format is html.

Values: html | json

Example

https://portal/arcgis/portaladmin/security/sslcertificates/update
	webServerCertificateAlias=myselfsignedcertificate