SSL for hiawatha (no proxy) DOES NOT WORK in kloxoMR. I had to rewrite the template files. I reported this months ago.
No matter what you do it will not work under current tpl files.
And, ssl certificate files are not created in a way that hiawatha can use, you have to do it manually, or use the script that comes with hiawatha. (For paid ssl certs that require CA)