In Configuration → Advanced Options → Web Interface / SSL-VPN, enable the Clientless SSL-VPN interface and the WinRoute's web interface. The Clientless SSL-VPN interface is used for secured remote connections to shared files in local networks by a web browser. The WinRoute's web interface is used for viewing of information on attempts for access to denied websites (see chapter 2.10 Web Rules Definition) and it can be also used for setting of some user account parameters or for access to statistics.
In Kerio SSL-VPN, enable the Clientless SSL-VPN interface's server. Use the Advanced → Change SSL certificate → Create SSL certificate option to create a new certificate (a self-signed certificate) with servername kwf.company.com
.
In User web interface, enable the web interface and use the same method as describe to create a certificate.
Self-signed certificates created here can be later replaced by certificates issued by a public certification authority.