Skip to content

Replacing the SSL certificate for HCL Sametime non-containerized deployments on Windows

KB0127211

Applies to

HCL Sametime 12.0.2 FP2, 12.0.3 (Non-containerized on Windows)

Introduction

This document provides step-by-step guidance on replacing the SSL certificate for Sametime non-containerized deployments on Windows.

Instructions

Follow these steps to successfully replace your Sametime SSL certificate:

Step 1: Prepare the Certificate Files

Your SSL certificate and private key must be in the PEM format and must be named exactly as required by the Traefik configuration.

  1. Obtain your new SSL certificate and corresponding private key from your Certificate Authority (CA).
  2. Ensure both files are in PEM format (text-based content, often starting with -----BEGIN CERTIFICATE----- and -----BEGIN PRIVATE KEY-----).
  3. Rename the files as follows (this is case-sensitive):
  4. Certificate file (.crt): Rename to cert.crt
  5. Private Key file (.key): Rename to cert.key

Step 2: Replace Existing Files

The certificate files must be placed in the designated Traefik configuration directory.

  1. Shutdown your Sametime server gracefully.
  2. Navigate to the Certificate Directory: Open the following directory path on your Sametime server:
    <Sametime_Installation>\traefik-windows-amd64\conf\keys
    Example: C:\HCL\Sametime\traefik-windows-amd64\conf\keys
  3. Delete the existing cert.crt and cert.key files from this location.
  4. Copy and Paste your newly renamed files (cert.crt and cert.key) into the keys folder.

Step 3: Start and Verify

  1. Start your Sametime server.
  2. Verify the new certificate is being served by accessing your Sametime URL in a browser and checking the connection security details.