Professional Documents
Culture Documents
Copyright Notice
Notice
Document information is subject to change without notice by Siemens Switzerland
Ltd. Companies, names, and various data used in examples are fictitious unless
otherwise noted. No part of this document may be reproduced or transmitted in any
form or by any means, electronic or mechanical, for any purpose, without the
express written permission of Siemens Switzerland Ltd.
All software described in this document is furnished under a license agreement and
may be used or copied only in accordance with license terms.
For further information, contact your nearest Siemens Switzerland Ltd.
representative.
© Siemens Switzerland Ltd, 2015
Credits
Desigo, Desigo CC, Cerberus DMS, Cerberus PRO, and Sinteso are registered
trademarks of Siemens Switzerland Ltd.
Other product or company names mentioned herein may be the trademarks of their
respective owners.
Edition: 2015-06-23
Document ID: A6V10415479_en_a_21
2
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Table of Contents
3
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
About this Document
Document Revision History
Scope
This document applies to Desigo CC Version 2.1.
Target Audience
End-Users are the primary users of the system. Depending on the specific
application, end users can be a building services engineer, a security guard, a
member of the fire brigade, the facility manager, and so on. They are responsible
for monitoring and managing the facility and any related events. They have the
appropriate training for operating the management station.
Project Engineers are responsible for planning and configuring a customer project.
They provide the parameterization of products, devices, and systems and are
responsible for general system troubleshooting. They have the training appropriate
to their function and to the products, devices, and systems to be configured. They
are familiar with the applied operating system(s) and the related network
environment.
Field Engineers provide the basic installation of devices and systems for a specific
customer at the customer site. They have the training appropriate to their function
and to the products, devices, and systems to be installed. They are also familiar
with the applied operating system(s) and the related network environment. Field
engineers are responsible for infrastructure troubleshooting (for example,
hardware, communication, network, and so on).
4
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
About this Document
Document Revision History
Liability Disclaimer
We have checked the contents of this manual for agreement with the hardware and
software described. Since deviations cannot be precluded entirely, we cannot
guarantee full agreement. However, the data in this manual are reviewed regularly
and any necessary corrections included in subsequent editions. Suggestions for
improvement are welcome.
5
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
About this Document
Document Revision History
Document Conventions
The following table lists conventions to help you use this document in a quick and
efficient manner.
Convention Examples
Numbered Lists (1, 2, 3…) indicate a 1. Turn OFF power to the field panel.
procedure with sequential steps. 2. Turn ON power to the field panel.
3. Open the panel.
One-step procedures are indicated by a Expand the Event List.
bullet point.
Conditions that you must complete or must ⊳ The report you want to print is open.
be met before beginning a procedure are
designated with a ⊳. 1. Click Print .
Intermediate results (what will happen ⇨ The Print dialog box displays.
following the execution of a procedure step),
2. Select the printer and click Print.
are designated with an indented ⇨.
⇨ The print confirmation displays.
Results, after completing a procedure, are
designated with a ⇨.
Bold font indicates something you should Type F for field panels.
type or select, or when a dialog box or Click OK to save changes and close the
window is specified. dialog box.
The Create a New Project dialog box
displays.
Menu paths in procedures are indicated in Select File > Text, Copy > Group, which
bold. means from the File menu, select Text,
Copy and then Group.
File paths containing placeholders display [installation drive:]\[installation
the placeholders in italics enclosed in square folder]\[project]\...
brackets.
Error and system messages are displayed in The message Report Definition
Courier New font. successfully renamed displays in the
status bar.
Italics are used to emphasize new or The reaction processor continuously
important terms. executes a user-defined set of instructions
called the control program.
This symbol signifies a Note. Notes provide
additional information or helpful hints.
Getting Help
For more information about the Desigo CC products, contact your local sales
representative.
6
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
About this Document
Document Revision History
Examples:
NOTICE
CAUTION
WARNING
DANGER
7
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
About this Document
Document Revision History
8
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Web Site and Web Client Application Certificates
Launching the Web or Windows App Clients
1
Definitions
Web Client application certificate or Web application certificate: It is a
certificate for signing a Web application on the Server and for verifying the
signature on the client.
Web site certificate: A certificate used by the Web site to prove it's identity and
to secure the communication between the Web Server (IIS) and the Web
Client.
If the Web site certificates are not already installed on the computer where you are
about to launch the Web Client, then on accessing the HTTPs URL for a Web
site/Web application, the Certificate Error: Navigation Blocked page displays.
The Web site certificate needs to be valid on the client. Depending on the type of
certificate used for the web site, proceed as follows:
In case of a self-signed certificate [➙ 12], you need to install the web site
certificate in the Trusted Root Certification Authorities and Trusted Publisher
store of the Windows Certificate store.
In case of an SMC-created or commercial host certificate, typically its root
certificate is missing on the client and you need to install it in the Trusted Root
Certification Authorities store. Moreover, you need to install the host certificate
(that was used for signing the Web application) in the Trusted Publisher store
of the Windows Certificate store.
NOTICE
9
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Web Site and Web Client Application Certificates
1 Launching the Web or Windows App Clients
NOTE 1:
Run the Web/Windows App Clients with Windows Internet Explorer 11.
Microsoft recommends upgrading and staying up-to-date on the latest Internet
Explorer browser version. Beginning January 2016, only the most current version
of Internet Explorer available for a supported operating system will receive
technical support and security updates.
NOTE 2:
In case host certificates created with SMC are used for the Web site / Web
application, it is recommended to add the Web site/Web application URL to the
Trusted sites zone from Tools > Internet Options > Security to avoid failing
certificate revocation checks.
10
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Web Site and Web Client Application Certificates
Launching the Web or Windows App Clients
1
Technical Tips
If you change the Web application certificate using SMC, then you must
reinstall the updated certificate on the clients.
If you are unable to access the Web/Windows App Client, see section
Troubleshooting in SMC in the System Management Console Manual
(A6V10415491 ).
If host certificates created with SMC are used for signing the web application
and the internet browser is configured to check the publisher's certificate
revocation, you might get the Security Warning message even after installing
the certificate. In this case you can either add the web site to the Trusted Sites
zone to resolve the issue or ignore the warning and click Run (for Web Client)
or Install (for Windows App Client).
For more information on how to launch the Web or Windows App Client see
Getting Started (A6V10415475 ).
11
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Installing the Web Site Certificate
2
In the Desigo CC Web page address bar, a security report Certificate Error,
displays.
3. Click Certificate Error to open a menu that contains a hyperlink to View
certificates.
12
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Installing the Web Site Certificate
2
13
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Installing the Web Site Certificate
2
6. Depending on the type of certificate used, proceed with importing the certificate
as follows:
– If the certificate you used while creating a Web site is a self-signed
certificate, then you need to install it in the Trusted Root Certification
Authorities [➙ 18] store.
– If the certificate you used while creating a Web site is a host certificate,
then you need to install the root certificate of the host in the Trusted Root
Certification Authorities [➙ 18] store.
If the Certificate Error: Navigation Blocked page displays even after installing the
Web site certificate then check if the Subject Alternative Name (SAN) property for
the selected certificate contains the host name provided at the creation of the
Web site. For example, if the Web site Host name field contains the full computer
name, ABCXY022PC.dom01.company.net, then the certificate provided in the
Certificate issued to field must contain the full computer name
ABCXY022PC.dom01.company.net as one of its name in the SAN.
14
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Installing the Web Application Certificate
3
15
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Installing the Web Application Certificate
3
4. Depending on the type of certificate used, proceed with importing the certificate
as follows:
– If the certificate you used while creating a Web application is a self-signed
certificate, then you need to install it in the Trusted Root Certification
Authorities [➙ 18] and Trusted Publisher [➙ 21] Windows certificate store.
– If the certificate you used while creating a Web application is a host
certificate, then you need to install it in the Trusted Publisher [➙ 21]
Windows Certificate store. You also need to install the root certificate of the
host in the Trusted Root Certification Authorities [➙ 18] store.
NOTE: If host certificates created with SMC are used for signing the web
application and the Internet browser is configured to check the publisher's
certificate revocation, you might get the Security Warning message even
after installing the certificate. In this case you can either add the web site to
the Trusted Sites zone to resolve the issue or ignore the warning and click
Run (for Web Client) or Install (for Windows App Client).
16
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Installing the Certificate in the Windows Certificate Store
Launching the Web or Windows App Clients
4
17
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Installing the Certificate in the Windows Certificate Store
4 Trusted Root Certification Authorities
18
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Installing the Certificate in the Windows Certificate Store
Trusted Root Certification Authorities
4
3. Now, select the Place all certificates in the following store option, and browse
to and select Trusted Root Certification Authorities certificate store.
NOTE: On the Windows 8.1 operating system, while installing the certificates
you must select the Windows store, for example User Store, from where you
want to import the certificate.
4. Click Next.
19
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Installing the Certificate in the Windows Certificate Store
4 Trusted Root Certification Authorities
5. Click Finish.
6. When the Security Warning message displays, click Yes to install the
certificate.
20
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Installing the Certificate in the Windows Certificate Store
Trusted Publisher
4
In the Desigo CC Web page, select the Desigo CC tab; then click the Web
Client thumbnail to start the application in the Web browser.
21
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Installing the Certificate in the Windows Certificate Store
4 Trusted Publisher
3. Now, select the Place all certificates in the following store option, and browse
to and select Trusted Publisher Certificate store.
NOTE: On the Windows 8.1 operating system, while installing the certificates,
you must select the Windows store, for example User Store, from where you
want to import the certificate.
4. Click Next.
22
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Installing the Certificate in the Windows Certificate Store
Trusted Publisher
4
5. Click Finish.
6. Click OK to close the Certificate dialog box after the successful import.
In the Desigo CC Web page, select the Desigo CC tab; then click the Web
Client thumbnail to start the application in the Web browser.
23
Siemens Web Client Application Certificate A6V10415479_en_a_21
Building Technologies 2015-06-23
Issued by © Siemens Switzerland Ltd, 2015
Siemens Switzerland Ltd Technical specifications and availability subject to change without notice.
Building Technologies Division
International Headquarters
Gubelstrasse 22
CH-6301 Zug
Tel. +41 41-724 24 24
www.siemens.com/buildingtechnologies
Document ID A6V10415479_en_a_21
Edition 2015-06-23