User Store
Add to Windows Certificate Store (Current User)
| Plugin type | Store | |
|---|---|---|
| Download | Version 2.3.0.1826. Look for older releases on GitHub for files named like plugin.store.userstore.v2.x.x.zip | |
| Compatibility | All platforms |
Description
Like the built-in certificate store plugin,
this one places the certificate in the Windows Certificate Store. However, instead of
using the LocalSystem location, it employes the CurrentUser location. This means the certificate will only be available to whichever user is running the simple-acme executable. The advantage of this is that you don’t need administrator rights to be able to use this plugin, as is required for the built-in one.
The disadvantage is that you will need to carefully manage which user(s) run the program, both
initially and for future renewals. When running the scheduled task as SYSTEM (which is the
default) this plugin will refuse to run, because it will most likely be a mistake to do so.
The plugin need to be unpacked into the folder where you also unpacked
wacs.exe to able to use it. Depending on how you downloaded the file,
you may have to unblock all new .dll files before your computer will trust
them. You can do that from the Windows File Explorer by using the right mouse button
and then checking the `Unblock` box on the General tab.
If you are using simple-acme as a dotnet tool, the folder will be %userprofile%\.dotnet\tools\.store\simple-acme\2.3.0.1826\simple-acme\2.3.0.1826\tools\net8.0\any
To verify that the plugin is properly installed you can start the main executable
with ‑‑verbose and it will print information about found and loaded plugins at
start up. When the plugin is loaded, it manifests itself as extra menu choices and
command line parameters being made availalbe.
This plugin requires to you use the pluggable release of the main executable. It will not work on the smaller trimmed releases.
Command line
--store userstore |
Activates the plugin | |
|---|---|---|
‑‑keepexisting |
While renewing, do not remove the previous certificate. |
Examples
| Typical | --store userstore [‑‑keepexisting] |
|---|
JSON
| ID | 95ee94e7-c8e2-40e6-a26f-c9fc3afa9fa5 |
|---|
Looking for win-acme?
simple-acme is a backwards compatible, drop-in replacement built by the same person. Project history.