To secure the communication between the Unit Assistant role and the Certificate Signing role, you must create a trusted certificate for the localhost.
What you should know
https://hostname:port/management
where hostname
is the IP address or the host name of the server hosting the Certificate Signing role. To have
a simple and robust failover configuration, the two roles must be hosted on the same server.
This way, when a failover occurs, both roles fail over to the same server. This also allows us
to use localhost
instead of the host name in the connection URL. For this
reason, the certificate used to secure the communication between the two must be identified as
localhost
.NOTE: A consequence of this approach is that only the Config Tool running on the server hosting the
Certificate Signing role can be used to fully configure the Unit Assistant
role.