When both the "Use HTTPS" and "QSDA Security" options are enabled, the SSL Certificate must be manually registered using the procedure below. If this is not done, users will be unable to connect to the QSDA web pages.

If only one of the options is enabled, the manual registration is not necessary, although it does not harm if it is done.

Register the SSL Certificate

1. Open Powershell in Administrator mode. List the certificate store by entering the command:
 

          dir Cert:\LocalMachine\my

2. In the resulting display, locate your machine's certificate and copy it's Thumbprint value to the clipboard.

3. Enter the following command:

netsh http add sslcert ipport=0.0.0.0:5003 certhash=THUMBPRINT appid='{77a1df23-d5f9-4c64-8580-c18b322dee56}' dsmapperusage=enable

replacing THUMBPRINT with the Thumbprint value copied in the previous step. If you have changed the default UI port to something other than 5003, use that port in place of "5003".

The certificate is now registered and users should be able to access the QSDA web page. If you ever need to repeat this procedure, you must first delete the existing registration using the command:

netsh http delete sslcert ipport=0.0.0.0:5003