Create a self-signed SSL/TLS certificate

To open the FactoryTalk Updater application in a browser you must use Transport Layer Security (TLS) 1.2 or later. Rockwell Automation recommends using a certificate signed by a certification authority (CA). However, you can create a self-signed certificate on the FactoryTalk Updater server.
  1. Follow these steps to create a self-signed certificate:
  2. On the FactoryTalk Updater server computer, open the Internet Information Services (IIS) Manager application.
  3. Select Server Certificates.
  4. In the
    Server Certificates
     window, right click and select Create Self-Signed Certificate.
  5. Enter a name for the certificate, such as UpdaterWebServer, and select OK. The certificate is added to the Server Certificates list.
  6. In the Connections list, right click the UpdaterWebServer certificate and select Edit Bindings.
  7. In the Site Bindings dialog, select the https binding and select Edit.
  8. In the Edit Site Binding dialog, in the SSL certificate menu, select the certificate and select OK.
  9. In the Connections list, right click the certificate and select Manage Website > Restart.
  10. Follow these steps to export the certificate and import it on the computer from which users will open FactoryTalk Updater in a browser:
  11. On the FactoryTalk Updater server computer, open the Internet Information Services (IIS) Manager application.
  12. Select Server Certificates.
  13. In the Server Certificates window, right click the new certificate and select Export.
  14. In the Export Certificate dialog, select to select the destination for the certificate file. Select a file location on the computer from which users will open the FactoryTalk Updater application in a browser.
  15. Enter a file name, such as UpdaterWebServerCert.
  16. Enter and confirm a password for the certificate and select OK.
  17. On the destination computer, double-click the certificate file to open the Certificate Import Wizard.
  18. For Store Location, select Local Machine and select Next.
  19. Verify that the certificate file name appears in the File name box and select Next.
  20. Enter the password that you set for the certificate and select Next.
  21. Select Place all certificates in the following store and select Browse to open the Select Certificate Store dialog.
  22. Select the Trusted Root Certification Authorities folder and select OK.
  23. Select Next.
  24. Select Finish.
Provide Feedback
Have questions or feedback about this documentation? Please submit your feedback here.