# Configure HTTPS certificates If you created a HTTP service using HTTPS and want to have an officially signed certificate, follow these steps \ 1\. Activate the HTTPS on the unit to have the system generate a self-signed certificate. 2\. Log in as root using SSH to your unit and go to /lib/tb/toolpack/pkg/ssl\_certificate. ``` cd /lib/tb/toolpack/pkg/ssl_certificate ``` 3\. Create a 'certificate signing request' form and private key using the following command: ``` openssl req -out CSR.csr -new -newkey rsa:2048 -nodes -keyout privateKey.key ``` You will be prompted for information. One of the prompts is for the 'common name'. Set it to the URL that you will use to access the unit. If an IP address is used, we strongly recommend it to either be static or 'reserved' in the DHCP. For example: ``` -> common name = 192.168.130.3 -> common name = myunit.lan ``` 4\. The previous step should have created two files: ``` CSR.csr privateKey.key ``` 5\. Download the generated CSR.csr from your unit (using SCP) and sent it to your signing authority to get a signed certificate. 6\. Once you have the signed certificate, upload it to your unit (using SCP) in the same directory as before. 7\. Concatenate the private key and signed certificate and replace the contents of the file toolpack\_cert.pem ``` rm -f toolpack_cert.* cat privateKey.key > toolpack_cert.pem ``` 8\. Restart the Webportal process to load the new certificate. ``` killall lighttpd ``` ### Using letsencrypt certificate for HTTPS The following link describe how to configure letsencrypt certificate to use in Telcobridges products. * [Configuring letsencrypt certificate for HTTPS](/configuration-details/configuration-by-web-portal-category/system-settings/configuring-letsencrypt-certificate.md) --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://prosbcdocs.telcobridges.com/configuration-details/configuration-by-web-portal-category/system-settings/configure-https-certificates.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.