Question

Photo of Dan Abbuhl

0

Protect my ministry needs Security Certificate location. Help

We are trying to setup Protect our ministry for the background checks but they are asking for the Security Certificate.  I assume they want to know about the SSL but not sure what to report back to them.  Does anyone know what information they need?

  • Photo of Jim Michael

    0

    Do you have a certificate installed on your Rock web server that allows https:// requests without the browser complaining? PMM should "just work" as long as you are using a real, commercial certificate signe by a certificate authority browsers trust, AND you are using https:// in the _Result Webhook_ in the PMM settings in Rock.

  • Photo of Daniel Hazelbaker

    0

    Given the fact that Amazon is a VERY new certificate authority (less than 3 years), PMM probably does not have the Amazon Root CAs installed in their system. We dealt with this for 6 months with them on the LetsEncrypt certificates (which have been around even longer). What they are saying is they need to import your certificate. Why they are asking you for it I don't know. They just did it themselves when we asked them. With LetsEncrypt the problem was we would have to do that every 90 days and that was not acceptable. We finally convinced them to install the Root CA for Lets Encrypt, but that took about 3 months of back and forth with them.

    Edit: The reason for PMM not supporting "recent" (if 3+ years can be called recent) is that they are using a VERY old version of Java that is about 5 years old.