Enable Remote Access

Sym3 Operator >= V10 is supporting only secured connections:

  • https instead of http.
  • wss instead of ws.

Hence, the configuration of Sym3 requires more configuration.

By default, Sym3 web is accessible only locally, meaning https://localhost/Sym3Web will be accessible from the server only. During the installation, a local certificate has been generated here C:\ProgramData\Sym3\cert and allows only localhost To enable remote access (a web browser from outside the server), an SSL certificate with the specified IP address or hostname is required.

Apply a SSL certificate

Note: this section should be don only once after installtion. No need to do this after upgrading Sym3.

Step1: Generate a new certificate

  1. On the server, Open the web application settings

  2. Open the CERTS tab

  3. Enter the server’s IP address:

    • If the IP Address field is empty, the current certificate only allows access from localhost ( or the loopback IP 127.0.0.1).
    • Enter the server’s IP address in the field. Multiple IP addresses can be accepted, delimited by semicolons.
    • Click the Apply Certificate button. Sym3 Web will then generate a new certificate that includes the specified IP address or hostname. This step may take some time. After the new certificate is installed, the browser will disconnect from the server.

Step2: Modify the Sym3 Web application settings file

Note: the following changes will be reset after upgrading Sym3. You will have to back up this file before upgrading Sym3.

The new certificate enables remote access through the specified IP address. The next step is to update the Sym3 Web authority URL.

  1. On server side, open the file C:\Program Files\Sym3\Sym3 Operator\Sym3Web\appsettings.json with a text editor.
  2. Find the item OIDC => Authority:
  "OIDC": {
    "Authority": "https://localhost:6051/",
  },
  1. Replace localhost in the URL with the IP address specified on the certificate management page, for example:
  "OIDC": {
    "Authority": "https://172.1.2.3:6051/",
  },
  1. Find the item AlarmServer => URL:
  "AlarmServer": {
    "URL": "https://localhost:20021"
  },
  1. Replace localhost in the URL with the IP address specified on the certificate management page, for example:
  "AlarmServer": {
    "URL": "https://172.1.2.3:20021"
  },

Step3: Restart services

  1. Open the Services (Window Key + “Services”)
  2. Restart Sym3 Auth Server
  3. Restart Sym3 Web Service
  4. Close your web browser
  5. Open your web browser, and open the web application. For example: https://127.1.2.3/Sym3Web