Enabling the HTTPS security model

Use Hypertext Transport Protocol Secure (HTTPS) to secure communications with the OpenWay Collection Engine user interface web site. Using HTTPS in the URL instead of HTTP directs the message to a secure port number rather than the default web port number of 80. The session is then managed by a security protocol.

Note: The use of HTTPS to secure the OpenWay Collection Engine user interface web site is an optional security model. If you do not configure HTTPS, your network might be vulnerable to security breach.

Field personnel can use HTTPS to obtain credentials for signed authorization for secure communications with the OpenWay Collection Engine user interface web site (behind the corporate firewall) using portable computers or mobile devices.

Enable HTTPS on each OpenWay Collection Engine server that has a running or configured OpenWay Collection Engine user interface web site. If any OpenWay Collection Engine user interface web sites behind the load balancer are not configured for HTTPS, unauthorized access and loss of confidentiality is possible.

To enable HTTPS SSL settings:

1. Select Start > Administrative Tools > Internet Information Services (IIS)Manager.

2. Navigate to Web Sites > CEUI > OpenWay.

3. In the Actions panel, click Bindings.

4. Click Add, and enter the following:

   • Type: https

   • IP address: All Unassigned

   • Port: 443

   • SSL certificate: The computers host name (if on the domain).

5. Click OK.

6. Click SSL Settings.

7. Check the Require SSL box.

8. Click Apply.

9. Restart the IIS server (or all Itron Enterprise Edition services).

Related topics:

• Digitally signed meter configuration export option

• Enforcing Active Directory authentication