Back to Qt.io
Contact Us Blog Download Qt

Install Qt License Service manually Test the connection

SSL certificates

We recommend that you enable a secure connection (HTTPS) between the end-user machines that are running Qt License Service and Qt License Server. This requires an SSL certificate.

Obtain an SSL certificate in one of the following ways:

  • From a trusted public Certificate Authority. This is the recommended way.
  • Generate your own self-signed certificate.

We recommend obtaining the certificate files from a trusted Certificate Authority. This way, you do not need to do any additional client-side configuration, as operating systems come with pre-installed root certificates from trusted Certificate Authorities.

Warning: The on-premises Qt License Server package contains pre-generated certificate files suitable only for testing on localhost. These are not suitable for production usage.

Enabling SSL

To enable SSL on the server:

Open the qt-license-server.service file and enable the following attribute:

Environment="QLS_ENABLE_SSL=yes"

Open the qt-service.xml file and enable the following attribute:

<env name="QLS_ENABLE_SSL" value="yes">

Note: If you modify the values in the configuration file, restart the server.

Using a certificate from a Certificate Authority

The following files must be in the root folder of the server:

  • cert.pem
  • key.pem

Note: If you modify the files, restart the server.

Using a self-signed certificate

The on-premises Qt License Server package contains a utility script to generate a self-signed certificate.

To generate your own self-signed certificate for the server:

  1. Install OpenSSL on your system.
    sudo apt install openssl
  2. Open and edit certgen/certgen.cnf.
    • Enter the correct req_distinguished_name values for your organization.
    • Enter the correct address for the production on-premises instance in subjectAltName.
  3. To generate the certificate files, run the following commands:
    cd certgen
./certgen.sh
  4. Copy the generated files (cert.pem, key.pem) into the root directory of the on-premises Qt License Server installation.
  5. Copy the cert.pem file to all end-user computers.
  6. On all end-user computers, add the absolute path of the cert.pem file as the value for ca_bundle_path in the qtlicd.ini file.

    Note: If this step is skipped, Qt License Service can't locate this file.

  1. Install OpenSSL on your system.
    • To easily install OpenSSL, consider installing Git. You can then find OpenSSL at C:\Program Files\Git\usr\bin\openssl.exe.
  2. Open and edit certgen\certgen.cnf.
    • Enter the correct req_distinguished_name values for your organization.
    • Enter the correct address for the production on-premises instance in subjectAltName.
  3. To generate the certificate files, run the following commands:
    cd certgen
certgen.bat
  4. Copy the generated files (cert.pem, key.pem) into the root directory of the on-premises Qt License Server installation.
  5. Copy the cert.pem file to all end-user computers.
  6. On all end-user computers, add the absolute path of the cert.pem file as the value for ca_bundle_path in the qtlicd.ini file,.

    Warning: If this step is skipped, Qt License Service can't locate this file.

Install Qt License Service manually Test the connection

© 2024 The Qt Company Ltd. Documentation contributions included herein are the copyrights of their respective owners. The documentation provided herein is licensed under the terms of the GNU Free Documentation License version 1.3 as published by the Free Software Foundation. Qt and respective logos are trademarks of The Qt Company Ltd in Finland and/or other countries worldwide. All other trademarks are property of their respective owners.