I can't for the life of me figure out how to convert the cert
that I got from Lets Encrypt / Certbot to something usable by Ubooquity.
A long time ago I gave up trying to use HTTPS with Ubooquity on Windows 10. I tried. I read lots of things, I tried lots of things, but I clearly did not understand what I was doing. Recently I heard a colleague mention how easy it was setting up his server's certs with Lets Encrypt and automating it with Certbot. So I tried it, and it was super easy. Just downloaded Cerbot, ran the Windows installer, and before you know it, I had a legit cert for my Win 10 box... but the files that Certbot grabs for you are PEM files. Ubooquity wants a java keystore...
So I did plenty of searching and reading. Lots of instructions for Linux - next to nothing for Windows. I did try some that I found, one was manually generating a keystore with the command line. Then somehow importing your PEM into the keystore...
None of the instructions I found worked. Clearly I'm missing something. Honestly, I don't know how certs work or have much experience with them. When I need to apply them at work, I download the cert from DigiCert and follow the application instructions and they work. But there aren't really instructions for this for Ubooquity (at least not any I could find).
Can someone help by documenting this?
I can get it started:
- Open your web browser and go to
You'll see a large "My HTTP website is running " and a drop-down menu " on " and another drop-down menu.
Use the two drop-downs. Select Other for the first one and Windows for the second.
- It will take you an instructions page. There's a download link there to get the certbot installed. https://github.com/certbot/certbot/releases/latest/download/certbot-beta-installer-win_amd64_signed.exe
- Install certbot by double-clicking the file after you download it. It will open an install wizard. Just accept the defaults and click your way through until it is finished.
- Halt your Ubooquity service (open it from the toolbar and click the "Stop Server And Exit" button)
- Halt any other web servers you might be running on your PC
- (You may have to briefly disable your Windows firewall for the next step. I did not, but YMMV.)
- Open a command prompt with admin privs (right click on it in the Start menu, select More, and select Run As Administrator)
- In the command prompt type: certbot certonly --standalone
- Note that there are two minus signs in that command.
- Certbot will ask you what the domain name of your server is, type it in. (Example: www.myserver.net)
- Certbot will grab a cert for you and save it in the default directories and even tell you what they are.
- Copy & Paste the info from the command prompt into Notepad and save it. You'll need that info later.
- Remember that certbot has scheduled a renewal of your cert just before it expires. So you shouldn't have to do anything more with certbot.
... and that's where I hit a brick wall. I don't know what to do with the PEM files that cerbot so kindly grabbed for me.
Customer support service by UserEcho