Server certificate for the failover web console
You can connect to the failover web console over an HTTP or HTTPS connection. This section is only relevant if you want to use an HTTPS connection.
To secure the communication with the failover web console, you need a server certificate, see The failover web console .
The wizard downloads a server certificate from a local web service while configuring the failover cluster on Node 1.
The server certificate is a .crt file that you install on your computer. You must add the certificate to the computer’s “Trusted Root Certification Authorities” store so that your computer trusts that certificate. If you do not install the certificate, your connection will remain secure, but:
-
You will get a security warning the first time you open the failover web console.
-
The system will not trigger an event in case of failover.
Install the server certificate on all computers from which you want to access the failover web console, see Install the server certificate on a computer.
The wizard downloads a new server certificate whenever you configure the failover cluster. You can remove the previous certificates from the “Trusted Root Certification Authorities” store.
The wizard stores the certificate on Node 1. If you lose the server certificate, you can download it again from the Manage your configuration page on Node 1. See Download the server certificate to access the failover web console.
The server certificate is valid for five years. You will not receive a warning when a certificate is about to expire. If a certificate expires, your browser will no longer trust that certificate. To renew the server certificate, you must configure a new failover cluster.