Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
Next revision Both sides next revision
kb:10031 [2020-06-16 09:03]
Magnus Fagerlund
kb:10031 [2020-06-16 11:22]
Martin Nilsson
Line 4: Line 4:
 At Lime we take security seriously and would therefore like to inform you that we will increase our security level a notch.  At Lime we take security seriously and would therefore like to inform you that we will increase our security level a notch. 
  
-The next release of the Lime CRM Desktop client will only allow connections to Lime CRM servers with certificates that are signed by a certificate authority. End users will no longer be able to accept the warnings and connect to Lime CRM servers with self-signed certificates.  +The next release of the Lime CRM Desktop client will only allow connections to Lime CRM servers with certificates that are signed by a certificate authority. End users will no longer be able to accept the warnings and connect to Lime CRM servers with self-signed certificates.
  
 We do allow connecting to ''localhost'', ''127.0.0.1'' or everything else where ''Uri.IsLoopback = true''. That means that you can still access your local installations with self-signed certificates.  We do allow connecting to ''localhost'', ''127.0.0.1'' or everything else where ''Uri.IsLoopback = true''. That means that you can still access your local installations with self-signed certificates. 
Line 13: Line 13:
 To verify that the updated security level will function in your environment, please install the Lime CRM Desktop 10.18.391 release candidate from [[https://builds.lundalogik.com/api/v1/builds/limecrm-desktop/versions/10.18.391/file|here]] , and connect to your Lime CRM server.   To verify that the updated security level will function in your environment, please install the Lime CRM Desktop 10.18.391 release candidate from [[https://builds.lundalogik.com/api/v1/builds/limecrm-desktop/versions/10.18.391/file|here]] , and connect to your Lime CRM server.  
  
-===== Help updating your certificates =====  +===== Update your certificate =====  
-Please contact Lime Support if you need technical assistance to update your local certificates + 
 +If you are not using valid certificates on your Lime CRM server, we strongly recommend that you update the certificate as soon as possible.  
 + 
 +Use a TLS certificate issued by a trusted root certificate authority. The certificate must be located in the Windows Certificate Store (machine store) and have a private key that is marked as exportable. Certificates issued using a CNG cryptography provider (Microsoft specific) are not supported. 
 + 
 +Instructions how to change the certificate can be found [[https://docs.lime-crm.com/configuration/webserver#change-the-httpsssl-certificate|here]] 
 + 
 +And as always, please contact your Lime contact person or [[https://www.lime-technologies.com/support/|our support team]] if you need any help.
  • Last modified: 4 years ago
  • by Magnus Fagerlund