Skip to main content

UDM SE

Hostudmse.aspireclan.com
LE64 Command
le64 --key udmse-account.key --email "aspireclan1208@gmail.com" --csr udmse-domain.csr --csr-key udmse-domain.key --crt udmse-domain.crt --generate-missing --domains "udmse.aspireclan.com" --export-pfx cert@aspireclan123# --handle-as dns --live
DNS Challenge

Public DNS Entries:

_acme-challenge.udmse
Created Date
Expiry Date
Certification creation stepsHow to use Let's Encrypt...
Certificate installation Steps
  1. Enable SSH in UDM SE if not enabled already
  2. Login to unifi.aspireclan.com or using direct IP address
  3. Go to Console Settings img alt
  4. Scroll down to SSH check box and ensure it is checked
  5. Click on change password and change it if you do not remember the SSH password img alt
  6. Current password:
unifi@Ubiquity3179
  1. Install KeyStore Explorer.exe and Open it
  2. Click on Create a new keystore
  3. Select keystore type as JKS
  4. Click OK
  5. Click on Tools Menu
  6. Click Import Key Pair
  7. Select PKCS#8 type
  8. Click OK
  9. Uncheck Encrypted Private Key
  10. Browse the domain.key file generated by Let's Encrypt
  11. Browse the .cert file generated by Let's Encrypt
  12. Click Import
  13. Enter Alias: unifi
  14. Enter and confirm New Password
  15. Click OK
  16. Key Pair Import should succeed
  17. Now, click on the Save button to save the imported key pair as a keystone file
  18. Enter and confirm "the same password" entered above
  19. Click OK
  20. Save the keystone file to a windows folder location. Filename: "keystore"
  21. Open WINSCP
  22. Select File Protocol as SCP
  23. Host name: UDMSE_IP Address. (Enter the IP Address as xx.xx.xx.1 not xx.xx.xx.01)
  24. Port 22
  25. User name: root
  26. Password: SSH Password
  27. Go to the root folder
  28. Then go to /data/unifi/data/
  29. Backup the existing keystore file
  30. Copy the newly created keystore file to this location and overwrite the old
  31. After the above step, go to /data/unifi-core/config/
  32. Backup the existing unifi-core.crt and unifi-core.key files
  33. Rename the .crt and .key files generated by Let's Encrypt to unifi-core.crt and unifi-core.key
  34. Now copy the .crt and domain.key created by Let's Encrypt [IMPORTANT: must copy the domain.key not the account.key]
  35. Reboot the UDM SE
  36. SSH into UDM SE using PuTTY
  37. Execute the command reboot
  38. Close KeyStore Explorer.exe
  39. Close WINSCP
  40. Close Putty
Tools

Download KeyStoreExplorer...

Download WINSCP...

Video reference