Configuring the Chrome Browser

When you access eReplication in different browsers using HTTPS, browsers may prompt a security certificate problem. This section explains how to install a security certificate.

Context

This section uses Google Chrome 73 as an example.

Procedure

  1. Import the security certificate.

    1. In the address box of Google Chrome on the maintenance terminal, enter https://IP:httpsport and press Enter.
    2. If a message Your connection is not private is displayed, click the lock at the very front of the address bar.

    3. Select Certificate information and click Certificate. In the Certificate dialog box that is displayed, click the Details tab.

      • Verify that the IP address to which the certificate is issued is the same as the one used to log in to eReplication. Otherwise, the message Your connection is not private will still be displayed upon an attempt to log in to eReplication after loading the certificate.
      • Verify that the client time is within the certificate validity period.
    4. Export the security certificate to the local PC.
      1. Click Copy to File.
      2. In the Certificate Export Wizard dialog box that is displayed, click Next.
      3. Keep the default format and click Next.
      4. Specify the name and storage location for the file to be exported and click Next.
      5. Click Finish.
      6. After The export was successful is displayed, click OK.
    5. Import the certificate.
      1. Click Customize and control and select Settings from the drop-down list that is displayed.

      2. On Settings, click Show advanced settings.
      3. In the HTTPS/SSL area, click Manage certificates.
      4. In the Certificates dialog box that is displayed, click Trusted Root Certification Authorities.
      5. Click Import.
      6. In the Certificate Import Wizard dialog box that is displayed, click Next.
      7. Click Browse and select the security certificate stored on the local PC and click Open.
      8. Click Next.
      9. Verify that the security certificate is stored in Trusted Root Certification Authorities and click Next.
      10. Click Finish.
      11. In Security Warning, confirm the source of the certificate and click Yes. You have finished importing the security certificate.
    6. After importing the certificate, close the browser, then re-open it, and relog in to eReplication.

    To enhance data security of eReplication, you are advised to replace the imported one with your customized security certificate.

  2. Disable the browser's support for SSL 3.0 and earlier versions.

    SSL 3.0 and earlier versions have security vulnerabilities, which may result in device information leakage. Therefore, you are advised to disable the browser's support for SSL 3.0 and earlier versions before logging in to eReplication.

    1. Close the Chrome browser.
    2. Duplicate a shortcut of the Chrome browser.
    3. Right-click the new shortcut and choose Properties from the shortcut menu.
    4. In the Properties dialog box that is displayed, enter a space and --ssl-version-min=tls1.1 at the end of the Targets text box.

Parent topic: Common Operations
Copyright © Huawei Technologies Co., Ltd.