Configuration of SSL/TLS and NTLM Authentification for the TwinCAT ADS WebServices on Windows CE 

SSL/TLS Configuration

In the registry create a subkey named SSL/TLS below /HKEY_LOCAL_MACHINE/Comm/HTTPD/ registry key.

Create the following values in /HKEY_LOCAL_MACHINE/Comm/HTTPD/SSL

• IsEnabled
• Type: DWORD
• Value: 0x00000001
• CertificateSubject
• Type: STRING
• Value: <Subject value of the certificate in certificate store which should be used for SSL/TLS>

Restart the HTTPD WebServer with the following console command: services refresh htp0:

Generating a self signed certificate with SSLCert.exe.

The tool is provided with the ADS API under \TWINCATDIR\ADS Api\TcAdsWebService\SSLCert. 

NTLM Authentication

•  The value NTLM in registry key /HKEY_LOCAL_MACHINE/Comm/HTTPD/ has to be set to 0x00000001 to enable NTLM Authentication for the HTTPD WebServer.
• In the /HKEY_LOCAL_MACHINE/Comm/HTTPD/VROOTS/ subkey for your website, or in the subkey named / if you have placed your website in  \HARD DISK\www\ the value a has to be set to 0x00000001.
• Restart the HTTPD WebServer with the following console command: services refresh htp0: