Gravatar for

Question by Ben, May 4, 2016 8:54 AM

Coveo Search Web Service SSL

We are trying to set up alerts against the different Coveo services we have running. The Coveo Web Service comes up as an untrusted site. Is there any standard procedure for setting up a certificate for this service, and are there any possible negative side effects in doing so?

1 Reply
Gravatar for

Answer by Jean-François L'Heureux, May 4, 2016 9:30 AM

The Coveo Search Service is always secured with the cert-iis.p12 certificate generated by the CES index in the index folder. Your browser shows the service as untrusted because that certificate is not registered in any certificate store.

Clients that are allowed to use this Coveo Search Service must have a copy of this certificate and use if to establish a secure connection with the service.

If you want the service to show as trusted, you can register the certificate in the certificate store of these machines. However, keep in mind that if this certificate falls in the wrong hands, people will be able to send search queries on behalf of anybody to the search index as the service allows impersonation.

Ask a question