Skip to main content

Configure a sensor to use a proxy server for communications

A successful scan requires a sensor that can communicate with the CertCentral cloud service. This allows it to receive instructions associated with certificate discovery and to report on certificate inventory updates.

Problem

You installed the DigiCert Sensor on a computer that requires a proxy server to communicate outside your network. Now the sensor cannot relay its findings back to Discovery in your CertCentral account, and it's preventing you from seeing the results of the scan.

Solution

Configure the DigiCert Sensor to use a proxy server so it can communicate with Discovery in your CertCentral account, allowing you to see the results of the scan.

Before you begin

  • You must have experience working with the proxy server's operating system.

  • You must have administrative permissions.

Note

You must have sensor version 3.8.26, or higher, installed on your system.

Configure the sensor to use a proxy

  1. On the computer you installed the sensor on, use a text editor (such as vi or Notepad) to create a proxy.properties file with these configuration settings:

    Setting

    Description

    enableProxy

    To enable proxy access: true enables proxy access and false disables proxy access

    httpsHost

    IP address of the proxy server used for HTTPS communication

    httpsHostPort

    Port number the proxy server uses for HTTPS communications

    httpsAuthUser

    Username required to authenticate the HTTPS proxy (Basic Authentication only) – If required

    httpsAuthPassword

    Password required to authenticate to the HTTPS proxy (Basic Authentication only) – If required

    Example 1. For example
    enableProxy=true
    httpsHost=125.125.125.125
    httpsHostPort=443
    httpsAuthUser=mypassword
    httpsAuthPassword=system01@Admin


  2. Add the configuration file to: install_dir/config/proxy.properties

  3. Restart the sensor to encrypt the proxy passwords and upload the proxy information.

    In the examples below, install_dir is the sensor installation directory.

    Linux

    Go to install_dir/cli and run the ./restart.sh command.

    Windows

    Go to install_dir/cli and run the restart.bat command.

What's next

The sensor can now use the proxy server to relay its findings back to Discovery in your CertCentral account, so you can see the results of the scan.