- 1 minutes to read
Step 5: Configure TLS
Configure TLS before you download the installation package when the Environment needs HTTPS. The Portal values in this step are consumed by the installer so IIS bindings and service URLs are generated correctly.
When TLS Is Required
| Scenario | Requirement |
|---|---|
| OAuth 2.0 / OIDC | TLS is mandatory |
| Windows Authentication | TLS is strongly recommended |
TLS Prerequisites
- Valid certificate installed on the application server
- DNS record pointing to the server
- Thumbprint available for the certificate
- Firewall rules allowing inbound HTTPS traffic
Example of the TLS tab where the HTTPS host name and certificate thumbprint are configured.
Portal Fields
| Field | Example | Description |
|---|---|---|
| Host / Domain | nodinite.yourdomain.com |
DNS name that must match the certificate |
| Certificate Thumbprint | 9b27c9d1939b821bb... |
Thumbprint copied from the certificate store or IIS |
Guidance
- Configure TLS before the binaries are downloaded.
- If you are using gMSA accounts, install the certificates in the LocalMachine store.
- All web applications share the TLS settings.
For full certificate preparation and IIS hardening details, use How to perform hardening.