For each Web server running on current computer (protocol, domain, port and relative path) there must be a list of authorized Windows groups and users. The configurator is therefore represented by a list of Web servers authorized on current computer based on the HTTP service. Each row represents one configured and enabled Web server. The present row does not mean that the Web server is currently running. The row means that the Web server (on specified address, port and protocol) is allowed to run. The Web server itself is launched by the corresponding application, e.g. PROMOTIC application. Caution! In the OS Windows, there is a number of system configured Web servers, that are in the list and it is not recommended to delete them without the exact knowledge.
The corresponding buttons can be used for adding, editing and deleting configured Web servers.
Web server | Configured Web server written in the syntax that is used by the HTTP service. The value cannot be directly edited, but is created by following configurators. |
---|---|
Protocol | Specifies the Web server protocol type (HTTP or HTTPS). |
Domain | Specifies the domain (by computer name, IP address or additional characters + and *) of the Web server. (+) All domains (strong wildcard) (recommended value) - All possible domains in the context of this protocol, port and relative path. Together with empty relative path, this is a recommended setting, that ensures that there is only one Web server running on a single TCP port. (*) Other domains (weak wildcard) - Domains in the context of this protocol, port and relative path, that have not been asociated so far. Explicit domain name - Specific domain name entered in the next configurator. |
TCP port | Specifies the TCP port of the Web server. For example 443. |
Relative path | Specifies the relative path of Web server beginning with regard to domain and port. It is possible to define that the Web server does not start by the domain root and port, but in some subdirectory of domain and port. This way it is possible to use one domain and port by multiple Web servers (and applications) simultaneously. By default this is an empty value (means that the Web server begins in the root of the domain and port) and the Web request for domain and port is processed by this Web server. Caution! For PROMOTIC Web server, it is necessary to leave the value blank, because the current PROMOTIC Web server must start by the domain root and port. |
Group name or user name | A list of Windows users or groups and their permissions to run the Web server. It is necessary to enter the specific Windows user that will be running the PROMOTIC application with Web server. For example SafeOper component recommends the Promotic user. |
---|---|
Permissions for ... | It allows to define the permissions to Execute and Delegate the current Web server for a specific Windows user or group, selected in the previous configurator (e.g. user Promotic). When setting up the permissions it is recommended to always set both setting Execute and Delegate accordingly. |
For each HTTPS Web server running on the computer (IP address, port) a corresponding certificate must be set, in order to sign the domain with HTTPS Web server and enable the SSL/TLS encryption of communication. The configurator is represented by a list of HTTPS Web servers authorized on current computer, that are based on the HTTP service. Each row represents one configured and enabled Web server. The present row does not mean that the Web server is currently running. The row means that the Web server (on specified address, port and protocol) is allowed to run. The Web server itself is launched by the corresponding application, e.g. PROMOTIC application.
The corresponding buttons can be used for adding, editing and deleting configured Web servers.
Any IP address | If checked, then the Web server listens on all IP addresses of the computer (both IPv4 and IPv6) and the following configurators for IP address setup are disabled. If not checked, then the Web server listens only on a specific address, that is defined by following configurators. |
---|---|
IP address type | Specifies the IP address type of the HTTPS Web server: IPv4 or IPv6. |
IP address | HTTPS Web server own IP address. The address format must comply with the selected IP address type (IPv4 or IPv6). For example "192.168.1.2", "fe80:0000:0000:0000:0202:b3ff:fe1e:8329", "fe80:0:0:0:202:b3ff:fe1e:8329", "fe80::202:b3ff:fe1e:8329", "::1" |
TCP port | Specifies the TCP port of the Web server. For example 443. |
Available certificates | A complete list of certificates stored in OS Windows storage. It is necessary to pick one certificate (left checkbox) and bind it with the corresponding IP address and TCP protocol. The configurator also allows certificate management for the computer. The certificates can be imported and deleted. The advantage of importing such certificate in this configurator is that the certificate is imported into the Windows Registry into the computer branch and is therefore visible for the HTTP service. Caution! If the certificate is imported the default way (by mouse double-clicking the certificate file in OS Windows) the certificate is imported only to the branch of current user and will not be visible for the HTTP service. |