Regenerate the Self Signed SSL Certificate
The default validity of an SSL certificate is 2 years. You can use the below steps to regenerate the self signed SSL certificate.
You must know the following parameters:
- <InstallationPath>: The installation directory of Proficy CIMPLICITY.
- <ConfigServicePortNumber>: Port number for the CIMPLICITY Configuration Service (typically 4955).
- <UABrowseServicePortNumber>: Port number for the UA Browse Service (typically 4956).
- <RootCertificateName>: The name of the root certificate file without the extension.
- <ServerCetificateName>: The name of the Server certificate/key files
without the extensions.Note: The default value of ServerCertificateName is server_cert. To use a different file name, update the variables ssl_certificate and ssl_certificate_key in the httpd.conf file with the new values and restart the CIMPLICITY HTTPD Service.
- <Passphrase>: Passphrase used to protect the generated Server certificate file.
Important: Go to the path where CIMPLICITY is
installed, and delete the ScadaConfigPki folder containing the installed SSL
certificates.
- Open the command prompt.
-
In the command prompt, navigate to the path where CIMPLICITY is installed.
Example: cd C:\Program Files (x86)\Proficy\Proficy CIMPLICITY
-
Enter the following command in the command prompt:
config_service_cert.bat <InstallationPath> <ConfigServicePortNumber> <UABrowseServicePortNumber> <RootCertificateName> <ServerCertificateName> <passphrase>
Example: config_service_cert.bat "C:\Program Files (x86)\Proficy\Proficy CIMPLICITY\" 4855 4865 CimScadaConfigRootCA server_cert cimplicity
The SSL certificate is now regenerated.