Certifying the On-Premises Gateway Web Console

After an on-premises gateway is successfully installed, you can log on to the on-premises gateway web console to further configure the gateway. However, because the web console is based on HTTPS, the certificate verification failure page may appear on the browser if:

  • You use the gateway's IP address to open the logon page.

  • The domain name in the FQDN of the on-premises gateway does not match that in the CN field of the gateway's certificate.

To ensure that you can open and log on to the web console properly, perform the following steps:

  1. Log on to the TMWS management console, and go to Policies > Global Settings > HTTPS Inspection to download and install the TMWS root CA certificate.

    This adds the root CA certificate to the trusted list of the browser, and thus certifies the on-premises gateway's certificate that is cross-signed by the root CA certificate.

    If you have already done so, skip this step.

  2. Configure the FQDN of the on-premises gateway, and use iws-hybrid.trendmicro.com as the domain name, for example, <CompanyName>.iws-hybrid.trendmicro.com.
  3. Type the FQDN set in step 2 in the address bar of the browser to open the logon page of the web console.