Document toolboxDocument toolbox

Certificates

Validity

Certificates are required in order to use HTTPS protocol while entering Pathfinder Server URLs in a secure manner. The self signed certificate generated by the installer (Windows installer, Debian installer, Red Hat installer), will be valid for 397 days. That’s the maximum expiration range that browsers accept (see also here and here).
After that period, the self signed certificates will need to be generated again, using the installer (for Windows) or our setup application (for Linux) provided with Pathfinder Server.

If the self signed certificate is expired, users will not be able to enter Pathfinder Server URLs and will get a ERR_CERT_DATE_INVALID error. Most popular browsers will allow the user to continue entering the advanced options, but it is advised to renew the certificate as soon as possible.

Using OpenSSL to create certificates manually

If you don’t want to use the built-in certificate generation of the Pathfinder Server Installer, you can manually create the certificate via the following commands

openssl req -x509 -sha256 -nodes -days 397 -newkey rsa:4096 -keyout privateKey.key -out certificate.crt openssl pkcs12 -export -out certificate.pfx -inkey privateKey.key -in certificate.crt