1

I would like to thank anyone who has helped me in the past. I have been able to setup the help desk portal for my company and have continued onto the next steps of our ongoing spiceworks project. I am making this post because I am curious to see how people have fixed this certificate error and if there is anything else I should be cautious about. I have looked into purchasing an SSL certificate from a 3rd party provider. Before doing this I would like to know if I am able to create a certificate on my own that would work on the public access portal. I also understand that the portal can be accessed by anyone. Is there something I should be cautious about or something else I can do to prevent non-employees access this portal from our multiple locations?

2 Spice ups
2

Internally you can create your own if you have an internal CA.

If you do not, I don’t see a need to use HTTPS internally.

Externally you should always use a bought SSL.

Cheap and free can be obtained from www.startssl.com and www.letsencrypt .org

3

I was looking at certbot (letsencrypt) earlier, but I was having issues in the drop down for my options. At the moment I’m using a desktop running windows 10, but I do not see this in the options under operating systems. From what I understand spiceworks uses apache, so I think I have that part figured out at the very least.

4

Spiceworks does use Apache, but i’m not sure I follow the issue.

You can still create the CSR and certificate in IIS, you just need to install the certificate once complete in SW.

5

I’m not currently running spiceworks on a windows server machine. I am currently running it on a desktop running windows 10. I don’t believe IIS is a feature for windows 10 as I have searched for it and nothing has come up

Edit:

Okay, I am turning on this feature now, thanks

6

Right.

Windows 10 is not officially supported for a start, if you get it to work, great but it isn’t supported

IIS can be installed on W10 but I wouldn’t do it where SW is installed, this is also not supported.

7

Why would you want to stop non-employees accessing this, why would they even know the link?

8

well at the moment I don’t have any form of authentication other than email. I dont have AD setup in my company so anyone can just come in and submit a ticket under a mistyped email or someone can use someone else’s email. As for the link, I’m just jumping the gun and assuming we will be changing the address used to access this page to a more user friendly name.

9

also, were awaiting to to hear if we can setup spiceworks in our main location as we do not have access to the firewall at this location. once we get approval we will be migrating SW over to that location. I’m just messing around in a test environment so that when the migration happens I have a better understanding of how things will need to go to be up and running.

10

Changing the address used doesn’t secure it any better.

Adding SSL doesn’t stop users from using just email either.

If you don’t have AD then your only other option is local users, which would require you to create users up front before they can use the system

11

This I will praise you for, regardless of if you migrate, continue to play around with a test setup so you can fully understand it.

1 Spice up
12

Yea my boss was telling me about this. each of our users have a unique ID and password so this would work perfectly for us. Am I able to export/import a end-user list

13

There is no import for people unless you use AD

14

okay, well thanks for the information!