Documentation Center

Updating your TLS Certificate

Instructions for instances with renewed TLS certificate.

If TLS is enabled on your Language Weaver Edge instance and your certificate was renewed, you will need to:
  • Replace the existing cert.pem and key.pem files with the newly created ones.
    • Language Weaver Edge stores your certificate in the application's installation folder:
      • For Windows installations, the default location is: C:\Program Files\SDL\SDL ETS\auth\tls\user-provided-certs\
      • For Linux installations, the default directory is /opt/sdl/ets/auth/tls/user-provided-certs
      • To retrieve the exact location where your private and public keys are stored, you can use the Language Weaver Edge API endpoint /api/v2/system/tls
    • If the private key is encrypted with a password, you will also need to update the Language Weaver Edge TLS configuration accordingly.
      • This can be done via the API (endpoint /api/v2/system/tls)
      • A sample curl command to update your TLS configuration is shown below:
        curl "https://controller-host:8001/api/v2/entitlements/license" \
            -X PUT \
            -u u_jsmith@example.com_u0VmztKJrwqf: \
            -F file="@filepath"
      • More information on how to use the API to update your Language Weaver Edge settings can be found in the API documentation available with your installation
  • Restart the Language Weaver Edge service on the Controller host for these changes to take effect.