When you deploy ArcGIS Monitor, a self-signed certificate is automatically created for your ArcGIS Monitor Server machine. Monitor Server uses this self-signed certificate for HTTPS requests by default.
In rare cases, the self-signed certificate for Monitor Server may no longer be valid, usually because the certificate has expired or the host name of the machine was changed. In these cases, you will need to generate a new self-signed certificate.
View the default self-signed certificate
Complete the following steps to view the default self-signed certificate:
- Access Monitor, if necessary.
The Home page appears.
- Click Administration.
The certificate information appears under HTTP communication settings on the Administration page.
Generate a new self-signed certificate
Complete the following steps to generate a new self-signed certificate:
- Sign in to the Monitor Server machine with an account that has administrative privileges and access to the configuration store directory.
- Open a command shell.
- Run the following command to stop the arcgis-monitor service.
- Ubuntu: sudo service arcgis-monitor stop
- Red Hat Enterprise Linux Server: sudo systemctl stop arcgis-monitor
- Delete the .pfx file in the /var/lib/<ArcGIS Monitor account username>/monitor/config-store directory.
- Run the following command to start the arcgis-monitor service:
- Ubuntu: sudo service arcgis-monitor start
- Red Hat Enterprise Linux Server: sudo systemctl start arcgis-monitor
The self-signed certificate is used by Monitor Server for HTTPS requests.
Access Monitor Server
Monitor Server listens on port 30443 for requests when HTTPS is enabled. Use the following URL syntax to securely access Monitor Server:
https://monitorserver.domain.com:30443/arcgis/monitor
Note:
If you rename the Monitor Server machine, you can continue to access it using HTTPS; however, the hostname will no longer match the original certificate. You must generate a new certificate and configure Monitor Server to use it.