Skip To Content

Configure ArcGIS Monitor with the default self-signed certificate

When you deploy ArcGIS Monitor, a self-signed certificate is automatically created for your ArcGIS Monitor Server machine. Monitor Server uses this self-signed certificate for HTTPS requests by default.

In rare cases, the self-signed certificate for Monitor Server may no longer be valid, usually because the certificate has expired or the host name of the machine was changed. In these cases, you will need to generate a new self-signed certificate.

View the default self-signed certificate

To view the default self-signed certificate, complete these steps:

  1. Access Monitor, if necessary.

    The Home page appears.

  2. Click Administration.

    The certificate information appears under HTTP Communication Settings on the Administration page.

Generate a new self-signed certificate

To generate a new self-signed certificate, complete these steps:

  1. Sign in to the Monitor Server machine with an account that has administrative privileges and access to the configuration store directory.
  2. Start the Windows Services manager.
  3. Right-click ArcGIS Monitor Server in the Windows Services manager and click Stop.
  4. Delete the .pfx file in the C:\Users\<ArcGIS Monitor account username>\AppData\Local\ESRI\ArcGISMonitor\config-store directory.
  5. Right-click ArcGIS Monitor Server in the Windows Services manager and click Start.

    The self-signed certificate is used by Monitor Server for HTTPS requests.

Access Monitor Server

Monitor Server listens on port 30443 for requests when HTTPS is enabled. Use the following URL syntax to securely access Monitor Server:


If you rename the Monitor Server machine, you can continue to access it using HTTPS; however, the hostname will no longer match the original certificate. You must generate a new certificate and configure Monitor Server to use it.

Related topics