Using a certificate issued by a trusted certificate authority

To configure the SSL certificate settings

  1. Ensure that you have all of the following:

    If you use certificate and key files If you use a PFX file
    The certificate file
    (in the .pem format)    		 The PFX file
    The file with the private key for the certificate
    (usually in the .key format)
    The private key password
    (if the key is password-protected)    		 The password for the PFX file, if the file is password-protected
    All aliases of the management server must be included in the certificate as Subject Alternative Names (SAN).
  2. Copy the files to the machine running the management server.

  3. On this machine, open the following configuration file with a text editor:

    • In Windows: %ProgramData%\Acronis\ApiGateway\api_gateway.json
    • In Linux: /var/lib/Acronis/ApiGateway/api_gateway.json

  4. Locate the following section:

    "tls": {
        "cert_file": "cert.pem",
        "key_file": "key.pem",
        "passphrase": "",

  5. Between the quotation marks in the "cert_file" line, specify the full path to the certificate file or the PFX file.

    For example:

    Operating system If you use certificate and key pair If you use a .pfx file

    Windows

    (note the forward slashes)

    		 "cert_file": "C:/certificate/local-domain.ams.pem" "cert_file": "C:/certificate/local-domain.ams.pfx"
    Linux "cert_file": "/home/user/local-domain.ams.pem" "cert_file": "/home/user/local-domain.ams.pfx"

  6. Between the quotation marks in the "key_file" line, specify the full path to the private key file or the PFX file that contains the certificate key.

    Usually, a PFX file includes both the certificate and its key. In this case, in the "key_file" line, specify the same path as in the previous step.

    For example:

    Operating system If you use certificate and key pair If you use a .pfx file

    Windows

    (note the forward slashes)

    		 "key_file": "C:/certificate/private.key" "cert_file": "C:/certificate/local-domain.ams.pfx"
    Linux "key_file": "/home/user/private.key" "cert_file": "/home/user/local-domain.ams.pfx"

  7. If the private key or the PFX file is password-protected, between the quotation marks in the "passphrase" line, specify the password.

    For example: "passphrase": "my password"

    If the "passphrase": "", line is missing in your api_gateway.json configuration file, add it manually.

    For example:

    "tls": {
        "cert_file": "cert.pem",
        "key_file": "key.pem",
        "passphrase": "my password",
    }

  8. Save the api_gateway.json file.

    Please be careful and do not accidentally delete any commas, brackets, and quotation marks in the configuration file.

  9. Restart Acronis Service Manager Service as described below.

To restart Acronis Service Manager Service

In Windows

  1. In the Start menu, click Run, and then type: cmd
  2. Click OK.

  3. Run the following commands:

    net stop asm
    net start asm

In Linux

  1. Open Terminal.

  2. Run the following command in any directory:

    sudo service acronis_asm restart