This page is a suggestion on how to generate a certificate for the running RTC Launcher web services. Your IT policies might differ from the procedures below.
Generate Certificate Hash
For encryption via a secure channel (HTTPS) a certificate must be generated.
One of the ways to find the certificate hash is to get it using IIS:
Open IIS and click on the Server Name.
Open Server Certificates.
Double-click the RTC Launcher certificates in the certificate list.
Open "Details" tab in the displayed "Certificate" pop-up.
Find "Thumbprint" value, copy it, and remove all spaces.
Ensure that the thumbprint does not have any additional symbols
Use this value in the "Certificate Hash" field in the RTC setup.
Exchanging a certificate for the RTCLauncher Service due to expiration
There are two ways to exchange an expired certificate:
Variant A
Generate a new certificate hash value as described above.
Re-run the installer with the new "Certificate Hash" new value
Variant B
Use the following commands below to get the same result;
netsh http show sslcert
POWERSHELL
Figure out which port belongs to the current RTCLauncher-Service installation. Remember the port for later.
Stop the RTC-Service (Services.msc)
Remove the old entry with the following command.
netsh delete sslcert ipport=[PORT_NUMBER]
POWERSHELL
Get the new thumbprint. Make sure there are no hidden special characters.
Run the following command to add the new thumbprint
Visit the API-URL with the following appendix /api/healthcheck in the browser and verify that the new certificate is in use.
Update the following registry entry as well, to make sure that the old thumbprint doesn't get used anymore → HKEY_LOCAL_MACHINE\SOFTWARE\Luware AG\RTCLauncher-Service the CERTIFICATEHASH entry
When copying the Powershell code examples in this manual:
Make sure to keep braces { } and their values as they are.
Replace the brackets [ ] with your values.
Exchanging a certificate for RTCLauncher Admin and or Client due to expiration