Configuring Web Server roles

After you have created a Web Server role, you can configure user session time, usage statistics, the URL, port settings, and the SSL certificate for the Security Center Web Client.

What you should know

By default, a Web Server is deployed to the main Security Center server. If you have multiple Web Server roles, assign each role to a different expansion server.
The URL of each Web Client must be unique.
You can set up load balancing by adding multiple servers in the Resources page. Security Center automatically uses the server with the least number of connections.
If end-users will monitor video in Web Client using Mozilla Firefox or Microsoft Edge browsers, make sure that one of the following conditions is met:
- A valid SSL certificate is installed on the server hosting the Web Server role.
  NOTE: If a third-party certificate was already installed on the server through Windows, you can apply the certificate to Security Center from Server Admin: select your server from the list, under the Secure communication section, click Select certificate, select the certificate you want, and then click Select > Save .
- If using the default self-signed SSL certificate, make sure that the REST ports on the Media Gateway role and the Web Server port settings match; the defaults are port 80 for HTTP and port 443 for HTTPS.

To modify a Web Server role:

From the Config Tool home page, open the System task, and click the Roles view.
Click the Web Server that you want to change.
(Optional) From the Identity page:
- Change the name of the role as it appears in Config Tool.
- Assign the role to a different partition to restrict its use to certain user groups.
Click the Properties tab.
Configure the behavior of a user session, by doing one of the following:
1. Set Unlimited session time to ON so that users remain logged on to Web Client as long as they keep their browser window open.
2. Set Unlimited session time to OFF so that users are automatically signed out of Web Client after 12 hours of inactivity.
If the default port settings conflict with other roles or applications on your system, set Use the default web ports of the server to OFF, and change the ports.
By default, the HTTP port is 80 and the Secure HTTP port is 443.
To change the URL used to access this Web Client, change the Web address.
To see the URL, look under the Communication settings.
Click Apply.
Verify that the URL opens Security Center Web Client, by clicking the URL under Communication settings on the Properties page.
If you are using the default self-signed certificate and it is not installed on your computer, your browser displays an error message. Proceed to the log on page by doing the following:
- In Google Chrome, click Show Advanced, then click Proceed to ComputerName (unsafe)
- In Internet Explorer, click Continue to this website (not recommended).
The Security Center Web Client log on page appears.
If you have multiple Web Server roles, move this role to its own expansion server.
To add failover and load balancing for this Web Server role, add a standby server.