Apply a New SSL Certificate to STS

Perform the following steps to set up a new SSL certificate with Forms Builder websites. These steps are valid for any STS used by Forms Builder.

  1. Ensure that a new certificate is installed in IIS.

    alert The SSL certificate must be a purchased public certificate which can be verified by common root certificate authorities such a GoDaddy or Verisign, among several. Self-signed certificates cannot be used except in a closed testing environment.
  2. Determine the Thumbprint and Subject Name of the new certificate.

    You can run following command in Windows PowerShell with correct path to retrieve that information:

     Get-ChildItem -Path cert:\LocalMachine\My

  3. Update the binding information for CMCPortalSTS to refer to the new certificate.

    In IIS, select CMCPortalSTS > Edit Binding > Edit HTTPS and choose the correct certificate.

  4. Modify following two AppSettings in the web.config of CMCPortalSTS:

    • SigningCertificateName

      Copy the latest Subject Name from PowerShell in this location.

    • CertThumbprint

      Copy the latest Thumbprint from PowerShell in this location.

  5. Modify following key in the web.config files of CMCFormsBuilderDesigner_V3 and CMCFormsRender_V3:

    • Thumbprint under TrustedIssuers

      Copy the latest Thumbprint from PowerShell in this location.