Good day, I hope this is the correct area to post this question, if not please advise.
We are running wacs v2.2.6.1571 on IIS 2019. We get all of our certificates issued and updated as expected and have for several years, so not an LE or wacs issues.
Our issue is that our mail server requires the certificate to be placed in "IIS Personal Store". The problem with this is we have to import the renewed cert at renewal time. Again, not a BIG problem, just an annoyance. We have communicated with our email server software developers and they tell us that this is basically how it works and they have no roadmap to charge this in the future.
Having gone over the docs, we can see that we can specify the "MY" store in the sjon file, but cannot find where to put it or exactly which json file to put it in.
Thanks for these tips. The problem with your 1st point (re:--cert...) is that it is GLOBAL and puts all certs in the "Personal (My) store". In the docs (and I saw it on a page one time in a former life) that you can specify the "My" store during creation of the cert, but no way to change it later.
So my understanding is that I have to edit (add to) the json file that deals with a particular renewal. I understand json and have tried several combinations of name/value pairs and just can't get it to work.
I'll look "simple-acme", maybe it has a way of changing/editing the json data for a particular cert renewal.
In general there is no documented advantage to storing certs in the local machine Web Hosting store vs Personal/My. There was an ms docs article somewhere that suggested it's a worthwhile distinction but I've yet to see any real evidence to support that and I've been doing this (windows certificate mgmt) for almost 10 yrs. So if you need them in (local machine) Personal/My store then go for it.