SSL cetificate for subdomains on windows apache server xampp

I have ssl certificate for my domain name. The organization where I bought the host for this domain name has performed the certificate procedures.

However, I am trying to add an SSL certificate for my domain name that I run with apache xampp on a windows device on a remote desktop in another company, but I encounter this error.

My domain is:

I ran this command: wacs.exe --source manual --host --validation filesystem --webroot "C:\htdocs\apache" --store pemfiles --pemfilespath C:\apache-certs

It produced this output:

My web server is (include version): Apache

The operating system my web server runs on is (include version): Windows

I can login to a root shell on my machine (yes or no, or I don't know): Yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): No

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): 2.6.0

Hi @astopaal, and welcome to the LE community forum :slight_smile:

Please confirm:

  • the external IP for
  • the webroot path for that name
  • HTTP access to the server
  • external IP is :
  • my project root page is xampp/htdocs. Also I have some routes here. No homepage or something like this. I'm using this domain for just routes like
  • I cant access with http, I have a ssl certificate but I think its expired. I tried to renew, but its throw my certificate is not valid.

Sorry for my bad English. Thanks.

1 Like

Please explain why that doesn't match:

You will need to allow HTTP for wacs to get a cert.


Actually I tried --webroot "C:\htdocs\apache". But it throws error and I changed this to xampp/htdocs

How can I allow http for wacs?

Edit : I changed webroot, it looks like good. But still I'm getting error. And I have no directory named .well-known/acme-challenge....

The Internet can't reach your server via HTTP.


I think its because I already have an invalid ssl certificate. My site is https but certificate is invalid. I don't know what should I do. How can I allow http access too?

if you don't run it on http (not https) at all, use Self-hosting option there


Hi, finally I created crt and keys as .pem file.

sorry for so many questions but I really so much searched but I didnt found any source. How to add pem file to httpd-xampp.conf?


I converted pem files to key and crt files. Then I add .crt file to windows as trusted certificate. After this, I set paths of crt and key files in xampp/apache/conf/extra/httpd-ssl and its worked.
Thanks you for your help. @orangepizza @rg305

1 Like

I hope you can automate that going forward.
If not, take good notes so you can repeat your steps on renewals.


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.