Updating your TLS Certificate

Instructions for instances with renewed TLS certificate.

If TLS is enabled on your Language Weaver Edge instance and your certificate was renewed, you will need to:
  • Replace the existing cert.pem and key.pem files with the newly created ones.
    • Language Weaver Edge stores your certificate in the application's installation folder:
      • For Windows installations, the default location is: C:\Program Files\SDL\SDL ETS\auth\tls\user-provided-certs\
      • For Linux installations, the default directory is /opt/sdl/ets/auth/tls/user-provided-certs
      • To retrieve the exact location where your private and public keys are stored, you can use the Language Weaver Edge API endpoint /api/v2/system/tls
    • If the private key is encrypted with a password, you will also need to update the Language Weaver Edge TLS configuration accordingly.
      • This can be done via the API (endpoint /api/v2/system/tls)
      • A sample curl command to update your TLS configuration is shown below:
        curl "https://controller-host:8001/api/v2/entitlements/license" \
            -X PUT \
            -u u_jsmith@example.com_u0VmztKJrwqf: \
            -F file="@filepath"
      • More information on how to use the API to update your Language Weaver Edge settings can be found in the API documentation available with your installation
  • Restart the Language Weaver Edge service on the Controller host for these changes to take effect.