Help
  • Explore Community
  • Get Started
  • Ask the Community
  • How-To & Best Practices
  • Contact Support
Notifications
Login / Register
Community
Community
Notifications
close
  • Forums
  • Knowledge Center
  • Events & Webinars
  • Ideas
  • Blogs
Help
Help
  • Explore Community
  • Get Started
  • Ask the Community
  • How-To & Best Practices
  • Contact Support
Login / Register
Sustainability
Sustainability

Join our "Ask Me About" community webinar on May 20th at 9 AM CET and 5 PM CET to explore cybersecurity and monitoring for Data Center and edge IT. Learn about market trends, cutting-edge technologies, and best practices from industry experts.
Register and secure your Critical IT infrastructure

Issuing and uploading Windows PKI Issued SSL Certificate to Smart-UPS

APC UPS Data Center & Enterprise Solutions Forum

Schneider, APC support forum to share knowledge about installation and configuration for Data Center and Business Power UPSs, Accessories, Software, Services.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
  • Home
  • Schneider Electric Community
  • APC UPS, Critical Power, Cooling and Racks
  • APC UPS Data Center & Enterprise Solutions Forum
  • Issuing and uploading Windows PKI Issued SSL Certificate to Smart-UPS
Options
  • Subscribe to RSS Feed
  • Mark Topic as New
  • Mark Topic as Read
  • Float this Topic for Current User
  • Bookmark
  • Subscribe
  • Mute
  • Printer Friendly Page
Invite a Co-worker
Send a co-worker an invite to the portal.Just enter their email address and we'll connect them to register. After joining, they will belong to the same company.
You have entered an invalid email address. Please re-enter the email address.
This co-worker has already been invited to the Exchange portal. Please invite another co-worker.
Please enter email address
Send Invite Cancel
Invitation Sent
Your invitation was sent.Thanks for sharing Exchange with your co-worker.
Send New Invite Close
Top Experts
User Count
BillP
Administrator BillP Administrator
5060
voidstar_apc
Janeway voidstar_apc
196
Erasmus_apc
Sisko Erasmus_apc
112
TheNotoriousKMP_apc
Sisko TheNotoriousKMP_apc
108
View All

Invite a Colleague

Found this content useful? Share it with a Colleague!

Invite a Colleague Invite
Back to APC UPS Data Center & Enterprise Solutions Forum
Alexg
Crewman Alexg
Crewman

Posted: ‎2022-11-07 06:52 PM . Last Modified: ‎2022-11-07 06:54 PM

0 Likes
3
1014
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content

Link copied. Please paste this link to share this article on your social media post.

Posted: ‎2022-11-07 06:52 PM . Last Modified: ‎2022-11-07 06:54 PM

Issuing and uploading Windows PKI Issued SSL Certificate to Smart-UPS

Hello All. I've recently deployed three Smart-UPS 2200 with NMC3 to a site. For the life of me I cannot get the NMC3 to accept the uploaded certificate. Using NMC CLI tool, I am successfully able to combine the CRT file with the private key into its own .p15 file. I upload that file into the browser and hit apply, and about 6 seconds later the page can no longer be resolved. Luckily I had enabled HTTP so I could go in and remove the last SSL certificate uploaded.

I've found a few posts here and there and tried to piece everything together, but not only would it benefit me, it'd benefit others if we have clear instructions for Windows PKI. Here are the steps I am following:

On a non-domain joined computer (VPN connectivity to AD network) I have the NMCSecurityWizard.exe (v100) available in a directory. Using Command Prompt, I change directory to the folder that holds the exe. I issue the following:

 

The below generates a private key and CSR.

1. NMCSecurityWizard.exe --csr -o ups01 -n ups01 -c US -m NY -l "New York City" -g "Some, Inc." -u "IT Dept" -i https://ups01.domain.com -d ups01.domain.com -k 1024

I rename the private key (.p15) to ups01key.p15

2. Copy/Paste contents of ups01.csr to Windows ADCS Web Enrollment Server. (Base64 certificate request - Web Server (default) template)

3. Download certificate in base64 encoded format which downloads it to .CER file. Rename it to .CRT. Verify no whitespace before ----BEGIN CERTIFICATE----.

4. Copy certificate (ups01.crt) to directory where NMCSecurityWizard.exe is located. Run the following to combine with key:

5. NMCSecurityWizard.exe --import -o ups01completecert -s ups01.crt -p ups01key

This creates ups01completecert.p15

6. Sign into web UI of UPS and navigate to Config > Network > Web > SSL Cert.

7. Upload ups01completecert.p15 and click 'Apply'

 

Step 7 is where everything goes wrong. I'm using a default Web Server template which is the only dang template that will work (what's that all about) anyways. Anyone have any advice?

  • Tags:
  • english
  • nmc3
  • smart-ups 2200
Reply

Link copied. Please paste this link to share this article on your social media post.

  • All forum topics
  • Previous Topic
  • Next Topic
Replies 3
Alexg
Crewman Alexg
Crewman

Posted: ‎2022-11-08 06:29 AM

0 Likes
0
991
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content

Link copied. Please paste this link to share this article on your social media post.

Posted: ‎2022-11-08 06:29 AM

Another interesting thing to note is that I tried using the APC Security Wizard to generate the CSR, and then combine the certificate and private key. Same issue. 

  • Tags:
  • english
Reply

Link copied. Please paste this link to share this article on your social media post.

Alexg
Crewman Alexg
Crewman

Posted: ‎2022-11-08 02:01 PM

0 Likes
1
977
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content

Link copied. Please paste this link to share this article on your social media post.

Posted: ‎2022-11-08 02:01 PM

I just chatted in with Support and word for word they said "even if it is a valid certificate, NMC can only be accessed through HTTPS through the generic APC certificate"....what?

  • Tags:
  • english
Reply

Link copied. Please paste this link to share this article on your social media post.

Alexg
Crewman Alexg
Crewman

Posted: ‎2022-11-13 09:21 PM

In response to rakhuuok
0 Likes
0
920
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content

Link copied. Please paste this link to share this article on your social media post.

Posted: ‎2022-11-13 09:21 PM

I found a solution, I'll post it here tomorrow. It's so ridiculous that such an archaic template must be used (original Web Server) and even duplicating it just to rename will cause issues. 

  • Tags:
  • english
Reply

Link copied. Please paste this link to share this article on your social media post.

Preview Exit Preview

never-displayed

You must be signed in to add attachments

never-displayed

 
To The Top!

Forums

  • APC UPS Data Center Backup Solutions
  • EcoStruxure IT
  • EcoStruxure Geo SCADA Expert
  • Metering & Power Quality
  • Schneider Electric Wiser

Knowledge Center

Events & webinars

Ideas

Blogs

Get Started

  • Ask the Community
  • Community Guidelines
  • Community User Guide
  • How-To & Best Practice
  • Experts Leaderboard
  • Contact Support
Brand-Logo
Subscribing is a smart move!
You can subscribe to this board after you log in or create your free account.
Forum-Icon

Create your free account or log in to subscribe to the board - and gain access to more than 10,000+ support articles along with insights from experts and peers.

Register today for FREE

Register Now

Already have an account? Login

Terms & Conditions Privacy Notice Change your Cookie Settings © 2025 Schneider Electric

This is a heading

With achievable small steps, users progress and continually feel satisfaction in task accomplishment.

Usetiful Onboarding Checklist remembers the progress of every user, allowing them to take bite-sized journeys and continue where they left.

of