Atozed Forums Atozed Software IntraWeb English IntraWeb General Discussion v
INTRAWEB ACME

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Linear Mode
INTRAWEB ACME
Comograma Offline
Member
***
Posts: 169
Threads: 47
Joined: Jan 2020
Reputation: 4
Location: Portugal
#12
02-26-2024, 05:56 PM
(02-23-2024, 08:41 PM)JuergenS Wrote: Hi, here are a few tips that might help.

You need to have a domain name and a Let's Encrypt account to get a certificate.

The certificate manager is working well now and there is a good documentation (Intraweb Certificate Manager.pdf).
In the Let's Encrypt URL edit you have to specifiy the staging environment for testing or the V2-Environment to get a real certificate.
The directoy ..\YourApplication.exe\acme-challenge\ has be located below your application, NOT in root or below !!!

You don't need to have your own ACME content handler, the intern IW content handler is working well.

Enable ACME in the server controller:
TIWServerController::SC_Config() : this->SSLOptions->EnableACME = true;

ACME is using HTTP Port 80 therefore you need to set
In TIWServerController::SC_Config() : this->SSLOptions->NonSSLRequest = TIWNonSSLRequest::nsAccept;

You can use an Indy server or HTTPS server without variable reservation.

Your antivirus software could block your firewall while you are testing ACME Wink

Good luck
So, what I did:
1. Created a Let's Encrypt account using Certbot with command line: certbot register
2. I have my Intraweb application running on port 80
3. SSLOptions.EnableACME := true;
4. SSLOptions.NonSSLRequest := nsAccept;
5. In iwCertificateManager, I set Let's Encrypt URL to: https://acme-v02.api.letsencrypt.org/acme
6. My Intraweb application executable is inside folder C:\MyCompany\MyApplication
7. Created acme folder like this:
       C:\MyCompany\.well-known\acme-challenge (the name is this or without the dot before well-known?) 
    Is it here or inside C:\MyCompany\MyApplication ?
8. I'm using an http.sys server

Whenever I hit execute button of iwCertificateManager, I always get error message: "Error executing requesting LE certificate: TIWLetsEncrypt.New_Order: Could not finalize certificate challenge within specified timeout.

My server is a Windows server and it not a registered web server, it is the my company server (connected to the internet, of course). So, my domain is not registered on the web)
I deactivated Antivirus and firewall.

What am I missing?
Find
Reply


Messages In This Thread
INTRAWEB ACME - by JuergenS - 01-08-2020, 04:59 PM
RE: INTRAWEB ACME - by kudzu - 01-08-2020, 05:46 PM
RE: INTRAWEB ACME - by JuergenS - 01-09-2020, 08:03 AM
RE: INTRAWEB ACME - by Alexandre Machado - 01-09-2020, 08:33 PM
RE: INTRAWEB ACME - by JuergenS - 01-10-2020, 05:10 AM
RE: INTRAWEB ACME - by JuergenS - 07-10-2020, 08:00 AM
RE: INTRAWEB ACME - by Comograma - 02-23-2024, 03:43 PM
RE: INTRAWEB ACME - by Alexandre Machado - 07-13-2020, 10:28 AM
RE: INTRAWEB ACME - by JuergenS - 07-20-2020, 09:19 AM
RE: INTRAWEB ACME - by Alexandre Machado - 07-22-2020, 02:03 AM
RE: INTRAWEB ACME - by JuergenS - 02-23-2024, 08:41 PM
RE: INTRAWEB ACME - by Comograma - 02-26-2024, 05:56 PM
RE: INTRAWEB ACME - by Alexandre Machado - 02-27-2024, 06:33 AM
RE: INTRAWEB ACME - by JuergenS - 02-26-2024, 06:53 PM
RE: INTRAWEB ACME - by Comograma - 02-27-2024, 03:22 PM
RE: INTRAWEB ACME - by Alexandre Machado - 03-01-2024, 03:02 AM
RE: INTRAWEB ACME - by Comograma - 03-01-2024, 05:48 PM

Forum Jump:


Users browsing this thread: 1 Guest(s)