Product Updates & News

December 25, 2023

Enable HTTPS for On-premises PACS

HTTPS communication can be enabled for on-premises PACS.
Communication will be encrypted and it allows you to operate on-premises PACS for more secure.
📑Download this article in PDF

1. Create a server certificate

Create a self-signed certificate using Powershell.

  1. Start PowerShell as administrator
  2. Execute the following command. In "DESKTOP-XXX", enter the computer name.

>New-SelfSignedCertificate -DnsName DESKTOP-XXX -CertStoreLocation "cert:\LocalMachine\My" -NotAfter (Get-Date).AddYears(50)

2. Export the certificate

  1. In Run command window, enter "mmc" and click OK.
  2. Open "Add/Remove Snap-ins" from "File" tab.
  3. Select "Certificates" from "Available snap-ins" and click "Add" button.
  4. Select "Computer account" and click "Next".
  5. Click "Finish".
  6. Click "OK".
  7. In "Console Root", open Certificates > Personal > Certificates.
  8. You will see the certificate with the computer name. Double-click on it.
  9. In "Details" tab, click "Copy to File".
  10. The Certificate Export Wizard will appear. Click "Next".
  11. Click "Next".
  12. Click "Next".
  13. Click "Browse", name the file to be exported, specify any location such as the desktop, and click "Save".
  14. Click "Next".
  15. Click "Finish" to complete the Certificate Export Wizard.

3. Import the certificate into Trusted Root Certificate Authorities

  1. Open the .cer file you saved.
  2. Click "Install Certificate".
  3. The Certificate Import Wizard will appear. Click "Next".
  4. Select "Place all certificates in the following store" and click "Browse".
  5. Select "Trusted Root Certificate Authorities" and click "OK".
  6. Click "Next".
  7. Click "Finish" to complete the Certificate Import Wizard.

    4. Enable HTTPS communication

    1. In PACS Manager, make sure that the status of DICOMApp is "Stopped".
      If the status of DICOMApp is "Running", click "Stop" to stop SonicDICOM PACS.
    2. In "Server" tab, check "Enable HTTPS". In "SSL Cert", select the Server Certificate that has been issued.
    3. Click "Save" and start DICOMApp.
    4. Access https://DESKTOP-XXX/viewer/

    *Note:  In "DESKTOP-XXX" above, be sure to enter the computer name you specified. Do not enter the IP address here.

    We recommend that you bookmark this URL for easy access.
    When accessing from another PC, follow 3. Import the certificate into Trusted Root Certificate Authorities on that PC.