TLS/SSL certificates for Admin Interface

Access Gate secures access to its administrative interface using HTTPS. TLS certificates are managed directly from the UI and apply immediately to all administrative access. 

TLS Certificate Management

TLS certificates are configured from Settings > General section of the Access Gate. This allows you to replace the default certificate with a trusted, organization-issued certificate for production use.

Certificate Requirements

Uploaded certificates must meet the following requirements:

  • Format: PEM
  • Content: A single file containing both:
    • The TLS certificate
    • The associated private key

Manual file management is not required.

Uploading a TLS Certificate

To upload a custom certificate:

  1. Navigate to Settings → General
  2. Locate the TLS Certificate menu
  3. Click Upload Certificate and Key
  4. Select the PEM file containing both the certificate and private key
  5. Upload the file
Uploading a TLS Certificate to access Trout admin interface

Access Gate will automatically:

  • Split the certificate and private key
  • Store them securely in the appropriate locations
  • Restart the web service to apply the certificate

No manual restart is required.

Certificate Handling and Fallback Behavior

Access Gate ensures HTTPS availability at all times using the following logic:

  • Custom certificate present
  • No custom certificate present
  • Certificate generation failure

Important HTTPS is required for full UI functionality. Features such as modern compression and secure authentication rely on TLS.

Security Considerations

  • Use trusted, CA-issued certificates in production environments
  • Replace temporary or self-signed certificates as early as possible
  • Monitor certificate expiration and renew before expiry
  • Restrict file access to TLS material through system permissions
  • Expect browser warnings when using self-signed certificates