Our SSL cert is expiring on our UW servers, can Lenovo Software help us renew that certificate?

Our SSL cert is expiring on our UW servers, can Lenovo Software help us renew that certificate?

Issue

SSL Certificate is expiring/expired on customer's Unified Workspace (formerly webNetwork) server(s).


Solution

Lenovo Software Support can assist you with renewing the SSL Certificate on your UW servers.  The only downtime required will be a restart of UW, on your servers, once the process has been fully completed.  Once the SSL Certificate has been updated in the keystore, the restart can be scheduled for a future time.


Send a copy of the /stoneware/config/<keystore>* file, along with a copy of the /stoneware/config/stonewareloader.xml file, to Stoneware**.

* To find the exact filename for your keystore, look at your relay objects in the webAdmin dashboard and check the CERTIFICATE SOURCE field.
** If your system has multiple relay servers, we only need copies of the files from one of the relay servers.

We will create a new CSR and send that back to you.

You take the CSR and submit it to your CA company. If they ask what type choose Java, Tomcat (this really won't matter too much as it's just to tailor the install instructions to the web server type).

Send us the cert that the CA company sends back to you.

We will create your updated keystore and send it back to you in a .zip.

Upon receipt of the zip file, the customer should extract the .keystore file. The keystore will go into the /stoneware/config directory.

Use the 8090 management console to shut down webNetwork cleanly. Then start webNetwork back up. Do this on all stoneware servers. It is best to shut down and try the new keystore on one server prior to copying it to all other servers.


*** For security, please ZIP the files and upload them to our SSL encrypted server (please notify us if using this server, so that we can retrieve the uploaded files):

You may also encrypt the passwords, through our Customer Portal, to add additional security to your upload:
Login to the Customer Portal, using your customer credentials.
Click on the Encrypt Data tile, located under the Customer menu.


****If you already have a new certificate installed on other servers, please let us know, as we should be able to take an exported keystore from one of those servers and convert it to a new Java keystore for webNetwork.

If your certificate is installed in IIS, and you would like to convert an exported PFX Certificate yourself, you can follow these steps:

If you do not wish to convert the exported PFX Certificate yourself, you can provide a copy of the exported PFX Certificate (along with the password for it) with the files listed above.  We can then convert the exported PFX Certificate into a Java keystore for you.

    Can't find the KB

    Unable to find the KB to address your issue ?  

      • Recent Articles

      • Lenovo Unified Workspace End-of-Life Questions and Answers

        Will the shutdown of LUW servers and access to downloads affect my server licensing? No, the shutdown of the customer servers and access to the product and licensing downloads will not affect your server licensing. This license is downloaded and ...

      • How do I determine my Unified Workspace license expiration date?

        The best method for determining the licensing information including the expiration date of your Unified Workspace license: Login to your 8090 management console on each server This may take remoting into each LUW server and relay, opening a browser, ...

      • Lenovo Unified Workspace 7.0.2.13 Released

        Highlights of Unified Workspace 7.0.2.13 Before you install: Please view the installation notes here. 7.0.2.13 requires a 7.0 license file. Below is a list of enhancements and fixes released in Unified Workspace 7.0.2.13 Fixed external storage ...

      • LanSchool Documentation Guides

        LanSchool Classic Teacher Console The LanSchool Teacher Console is the interface teachers will use to manage their classroom and students. It contains all the tools necessary for a teacher to effectively interact with students and create a ...

      • Lenovo Unified Workspace 7.0.1.41 Released

        Highlights of Unified Workspace 7.0.1.41 Before you install: Please view the installation notes here. 7.0.1.41 requires a 7.0 license file. Below is a list of enhancements and fixes for Unified Workspace 7.0.1.41 Updated Log4j Updated Java Updated ...

      • Related Articles

      • Convert PFX certificate to JKS keystore using KeyStore Explorer

        Issue: Can we import the wildcard SSL Certificate we already have on our IIS server(s)? Solution: Please see the following documentation on how to convert a PFX certificate, exported from an IIS server, to a Java JKS keystore. Once you have your new ...

      • How do I renew my SSL certificate?

        This process is in 3 basic parts.  1 - Create the Keystore  2 - Generate the CSR  3 - Import the cert  The documentation below has several methods to complete this process. The first is a how to use a free Java gui tool called Portecle, the second is ...

      • Lenovo Software Products

        The Lenovo Software group produces and only supports the following products: LanSchool LanSchool Air Unified Workspace (formerly webNetwork) (End of Life notice) Please visit The Lenovo Software website for more information on these products. For ...

      • SSL Root Certificate causing issues with Slingshot

        Issue: When trying to run a Slingshot webApp on a workstation, the Slingshot utility gives the following error: Error: "Problem found with the Secure Sockets Layer(SSL) certificate sent by the server.  Please note that self-signed certificates cannot ...

      • webNetwork will not start because AD ssl certificate has expired

        Customer restarted webnetwork and now it won’t start. It gives errors like : FATAL (12/23) 11:19:23 [com.stoneware.service.DirectoryManager]: Unable to verify/extend schema. javax.naming.CommunicationException: simple bind failed: 192.168.1.41:636 ...