- Download Win-ACME, it is a\u00a0Letsencrypt\u00a0Client for Windows + IIS<\/li>
- Set \u201cPrivateKeyExportable\u201d to TRUE! in settings.json of Win-ACME!<\/li><\/ul>\n\n\n\n
![\"\"](\"https:\/\/www.rocworks.at\/wordpress\/wp-content\/uploads\/2021\/04\/Picture-1-1024x506.png\")
<\/a><\/figure>\n\n\n\n- Execute Win-ACME wacs.exe and follow the instructions for fist setup.<\/li>
- Execute
wacs.exe --renew --baseuri https:\/\/acme-v02.api.letsencrypt.org\/<\/code> to renew a certificate.<\/li><\/ul>\n\n\n\n<\/p>\n\n\n\n
- Export Root Certificate as PEM:<\/li><\/ul>\n\n\n\n
![\"\"](\"https:\/\/www.rocworks.at\/wordpress\/wp-content\/uploads\/2021\/04\/Picture-1-1.png\")
<\/a><\/figure>\n\n\n\n![\"\"](\"https:\/\/www.rocworks.at\/wordpress\/wp-content\/uploads\/2021\/04\/Picture-3.png\")
<\/a><\/figure>\n\n\n\n- Save Root Cert as root-cert.pem to the WinCC OA project config directory.<\/li><\/ul>\n\n\n\n
<\/p>\n\n\n\n
- Export the Host Certificate with “certlm”<\/li><\/ul>\n\n\n\n
![\"\"](\"https:\/\/www.rocworks.at\/wordpress\/wp-content\/uploads\/2021\/04\/Picture-5.png\")
<\/a><\/figure>\n\n\n\n![\"\"](\"https:\/\/www.rocworks.at\/wordpress\/wp-content\/uploads\/2021\/04\/Picture-6.png\")
<\/a><\/figure>\n\n\n\n![\"\"](\"https:\/\/www.rocworks.at\/wordpress\/wp-content\/uploads\/2021\/04\/Picture-7-1024x476.png\")
<\/a><\/figure>\n\n\n\n- Convert Certificate from PFX to Certificate and Private-Key<\/li><\/ul>\n\n\n\n
openssl pkcs12 -in [yourfile.pfx] -nocerts -out keyfile-encrypted.key\nopenssl rsa -in keyfile-encrypted.key -out privkey.pem\n=> Save to config\/privkey.pem\n\nopenssl pkcs12 -in [yourfile.pfx] -clcerts -nokeys -out certificate.pem\n=> Save to config\/certificate.pem<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"This is a manual way to get and use Certificates from Letsencrypt with the Webserver (ULC UX) in WinCC Open Architecture. You have to update the certificate manually before it expires. Temporarily configure IIS (HTTP) to get a new certificate … Continue reading
- Convert Certificate from PFX to Certificate and Private-Key<\/li><\/ul>\n\n\n\n
- Export the Host Certificate with “certlm”<\/li><\/ul>\n\n\n\n
- Save Root Cert as root-cert.pem to the WinCC OA project config directory.<\/li><\/ul>\n\n\n\n
- Export Root Certificate as PEM:<\/li><\/ul>\n\n\n\n
![\"\"](\"https:\/\/www.rocworks.at\/wordpress\/wp-content\/uploads\/2021\/04\/Picture-1.png\")
<\/a><\/figure>\n\n\n\n