Using ESCWA with a TLS Enabled API Client

ESCWA can be configured for TLS security. See Configuring TLS for the ESCWA Client for more information. When this configuration is performed you must ensure that the process that accesses the API also trusts the root certificate authority which signed the certificate that ESCWA is using for TLS.

For the ESCWA application, or the interactive API, this will be the browser which you are using.

Note: The FireFox browser does not use the Windows certificate store. This means that you need to add the root CA certificate to your FireFox store.

If you are using a scripting language like PowerShell or Python, you will need to ensure that they trust the root certificate authority before making API requests to the TLS enabled ESCWA.

Configuring the Visual Studio IDE for TLS Enabled Connection Between Server Explorer and ESCWA

The Visual Studio IDE makes requests via ESCWA when using the Server Explorer.

To ensure trust between the Visual Studio IDE and the root Certificate Authority (CA) which has signed the certificate securing ESCWA, perform the following configuration steps:

  1. Open a Windows command prompt and enter mmc.

    This opens the Microsoft Management Console.

  2. Click File > Add/Remove Snap-in.

    This opens the Add or Remove Snap-ins dialog box.

  3. In the Available snap-ins pane, click Certificates and then click Add.

    This opens the Certificates snap-in dialog box.

  4. Choose the appropriate account for your requirements. Typically, this would be My user account.
  5. Click Finish.
  6. Click OK.
  7. In the left pane, expand Console Root > Certificates - Current User > Trusted Root Certification Authorities.
  8. Right-click Certificates and then click All Tasks > Import.

    This opens the Certificate Import Wizard dialog box.

  9. Click Next.
  10. In the File name field, type the absolute path and certificate file name. Alternatively, click Browse and navigate to the file.
  11. Click Next.
  12. Check Place all certificates in the following store.
  13. In the Certificate store field, type Trusted Root Certification Authorities.
  14. Click Next.
  15. Review the specified settings and then click Finish.
Parent topic: ESCWA Client Web API