This site requires JavaScript to be enabled

We're currently experiencing some technical difficulties with our Chat channel. To resolve those issues please clear your browser cache and reload the page. Further information: Atricle NEW0000472

How can we help?

Solution Suggestions

Please enter your question to get suggestions.
Boolean Operators
OR or vertical bar symbol (|)
Finds a match if either the terms exist in a document (a union using sets).
Finds a match if both terms exist in a document (an intersection of sets).
NOT, minus (-), or exclamation point (!)
Excludes documents that contain the term after NOT (a difference of sets).
Asterisk (*)
The asterisk symbol performs a multi character wildcard search.
Percent sign (%)
The percent sign performs a single character wildcard search.
Quotation marks (")
Use quotation marks to search for an exact phrase with multiple terms.
For examples and more information look at our Knowledge Base: Advanced Search On The Support Portal

Set up HTTPS with an on-premise license server

This article describes how to set up an HTTPS connection between the on-premise Tricentis License Server, version 1.1.0 to 2.1.0 (released independently of Tosca Commander/Tosca Server) and Tosca Commander. It applies to both online and offline servers.

For information on how to set up an HTTPS connection with a License Server version 3.0.1 or higher, see this Tricentis Knowledge Base article.

For information on how to set up an HTTPS connection with an older License Server that is part of the Tosca Server installation, see this Tricentis Knowledge Base article.



When issuing the SSL-Certificate make sure that the value for "Issued to" is the same as your actual license server name/address. 

To set up the connection, follow the steps below:

  1. Export your SSL-Certificate from IIS-Manager > Server Certificates. 

  2. Enter the following: the path where you want to save the certificate, a name (as part of the Export to path), and a password.  

    -->    You can export your certificate to any folder. Tricentis recommends that you use the default License Server directory: C:\Program Files\TRICENTIS\Tricentis License Server 

    -->    Your password must have at least 6 characters and must not begin with a special character. Take note of the password; you will need it again later on. 

  3. Open a command prompt with administrative privileges:

    -->    Change the directory to your Java Runtime Environment location: 
    C:\Program Files\TRICENTIS\Tricentis License Server\License Server\2017.8.0\jre1.8.0_191\bin

    -->    Convert your PFX file by typing the following string:  

    Tricentis recommends that you save the JKS file into the License Server directory (see string above). Replace <NameOfChoice> with the name of your PFX file.
  4. Confirm with Enter. 
  5. Enter a password for the PFX file and set a password for the keystore .jks file.

    This password must be the same as the password you set for the certificate in step 2. 

    You should now have a *.pfx and a *.jks in your license server folder.
  6. Open a command prompt with administrative privileges and go to C:\Program Files\TRICENTIS\Tricentis License Server\License Server\2017.8.0\License Server Deployment\flexnetls-x64_windows-2017.08.0\server.
  7. Stop the license server by entering flexnetls.bat -stop.
  8. In Windows Explorer, navigate to C:\Program Files\TRICENTIS\Tricentis License Server\License Server\2017.8.0\License Server Deployment\flexnetls-x64_windows-2017.08.0\server.
  9. Open the file flexnetls.settings and change the PORT to 0:

  10. The directory also contains the file local-configuration.yaml. Perform the following edits:

    -->    Put the value of https-in-enabled to true.

    -->    The default port is 1443. You can enter a different port, if needed.

    -->    Enter the path to your .jks file. Use double-backslashes instead of single backslashes.

    -->    Enter the keystore password you defined in step 5.

  11. Update Flexera with another command prompt: flexnetls.bat -update

  12. Restart Flexera with flexnetls.bat -start.

    The service may take some minutes to become fully functional.

  13. Now activate your licenses, either online or offline

    -->    Use the same server name as you entered for your certificate (Issued To) with the prefix https://.

    -->    Use the port you chose during step 10 (the default port is 1443).

0 0

Roy Falik

Created: 2019-04-09 22:00:50

In the command for generating the JKS file, one of the flags is incorrect. It should be "-srcstoretype" and not "-srckeystoretype"

0 0

Stephan Schober

Created: 2019-05-09 18:56:58

Updated Screenshot of the CMD command to convert the PFX file because of a wrong argument ("scrkeystoretype" -> "srcstoretype").

Larry McCarthy

2019-11-03 13:45:38 , Updates: 2, Last Update: 2019-11-04 01:34:14

1. PLEASE provide copy-edit-paste-able text for long, cryptic command lines like the keytool one! ... Like:

keytool.exe -importkeystore -srckeystore "C:\Program Files\TRICENTIS\Tricentis License Server\NameOfChoice.pfx" -srcstoretype pkcs12 -destkeystore "C:\Program Files\TRICENTIS\Tricentis License Server\NameOfChoice.jks" -deststoretype JKS

2. Licence server no longer includes a JRE. You must CD to %JAVA_HOME%\bin to run keytool.

3. PLEASE DO NOT include punctuation in lines that are copy-and-pasteable. For example, please don't do this:

     12. Restart Flexera with flexnetls.bat -start.


0 0

Manoj Sirikonda

Created: 2021-09-28 00:23:42

The files path has changed in License server version 3.0.1. Can you please update this doc to a newer version?

0 0

Marina Zeba

Created: 2021-10-07 11:36:17

Hi Manoj, thank you for your feedback! We created a new KB article for License Server version 3.0.1 or higher: