Let me double check in the morning. My memory suggests to me our cert doesn’t have a password associated with it.
Port 52315 is an internal port that the WebUI uses made available by the platform. You can completely disable outside access for port 52315. I think if you follow the instructions on the administrator guide, it only secures 80/443 (or whatever port you’ve pointed the WebUI at). Right now I think 52315 is a self signed cert.
If you’re wondering what’s up with port 52315, it serves a lot of routes that get consumed by our ETL process to populate webui.db (basically a cached version of BFEnterprise data).