⚠️ OPSWAT Central Management v7 and My OPSWAT On-Premises (My OPSWAT Central Management v8) will reach End of Sale on July 31, 2025, and End of Life on January 31, 2027. We encourage you to upgrade to My OPSWAT Central Management v10 before Janauary 31, 2027, to ensure continued support and access to the latest features.

Secure Connection

By default, the communication between an OPSWAT product instance and a My OPSWAT On-premises server is not encrypted. If HTTPS is enabled, encrypted communication between the server and the product instances can be enforced. This section describes how to enable HTTPS connection for My OPSWAT On-premises.

Requirements

In order to enable HTTPS on My OPSWAT On-premises server, a trusted certificate issued by a certificate authority provider or a self-signed certificate along with their private key and password (if needed) files must be provided.

Adding Certificates

To add a certificate for the Secure Connection settings, please refer to Certificates.

Enabling HTTPS

  1. On the left navigation, navigate to Settings > Server tab > Secure Connection section.
  1. Toggle Enable HTTPS to ENABLE
  2. Choose a certificate you added in the Certificates tab.
  3. Select the TLS version(s) you want to enforce HTTPS for. The port configuration currently cannot be changed.
  4. Click Save to confirm your selection.
  5. My OPSWAT On-premises should immediately refresh itself for the new settings to take effect. Please note that the refresh process can take several minutes and the server cannot be accessed until its completion.

Please note that when using a self-signed certificate to enable HTTPS mode, the managed product instances should have this certificate in their trust store to be able to establish a connection to the My OPSWAT server.

For MetaDefender Kiosk L-series instances, they should be on version 5.6.2 or newer.

Disabling HTTPS

  1. On the left navigation, navigate to Settings > Server tab > Secure Connection section.
  2. Toggle Enable HTTPS to DISABLE.
  3. Click SAVE.
  4. My OPSWAT On-premises should immediately refresh itself for the new settings to take effect. Please note that the refresh process can take several minutes and the server cannot be accessed until its completion.

Server URL

The Server URL setting is used to set the My OPSWAT On-premises' server address, such as when generating download URLs for product reports. The server URL can be either a domain or an IP address.

For example, with the server URL http://myopswat.local, a report's download URL is formatted as http://myopswat.local/console/reports/<report>/location>/report.json

Please note that the chosen Server URL should be resolvable by the system that you are using to browse the My OPSWAT On-premises console.

The Enable HTTPS setting affects the protocol scheme used for the server URL, which is either http or https.
Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
Next to read:
Proxy
On This Page
Secure ConnectionRequirementsAdding CertificatesEnabling HTTPSDisabling HTTPSServer URL