Use kumu-ssl-enable to re-enable SSL after disabling, or apply changes after uploading a new certificate and key.
kumu-ssl-disable
NOTE: Kumu Enterprise sends HSTS headers when SSL is enabled. Users will have to clear these headers from their browsers' cache to access the site via HTTP if SSL is disabled.
kumu-ssl-install-cert
Use kumu-ssl-install-cert to upload a custom certificate.
certificate must include subdomains (eg *.kumuenterprise.example.com)
certificate must not include a passphrase
certificate must be encoded in PEM format
certificate must include the full chain if signed by a CA
NOTE: After you have uploaded your certificate and key, you must run kumu-ssl-enable to apply the changes.
kumu-ssl-install-key
Use kumu-ssl-install-key to upload a custom private key.
key must be encoded in PEM format
NOTE: After you have uploaded your certificate and key, you must run kumu-ssl-enable to apply the changes.
The kumu-ssl-enable-selfsigned allows your instance to use a self-signed SSL certificate that is generated for you automatically when the instance first boots.
Note: we consider this a legacy feature. While we still support kumu-ssl-enable-selfsigned, we only recommend using it for debugging purposes, or temporary Enterprise trials. We no longer recommended using the self-signed certificate in production with end users, since modern browsers will show persistent, strong security warnings that end users will have to repeatedly bypass.
