> For the complete documentation index, see [llms.txt](https://docs.monokot.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.monokot.io/basics/security-certififcate.md). # Security Certififcate The server security certificate is used to establish communication between the server and the HTTPS client (such as Monokot Server Administrator), and is also the default certificate of the OPC UA application. During the first start-up, the server creates a self-signed security certificate and saves it in the following directories: * **Windows:** *%ProgramData%\Monokot\Mos\Certificates\Own\ (C:\ProgramData\Monokot\Mos\Certificates\Own)* * **Linux:** */usr/share/Monokot/Mos/Certificates/Own/* * **macOS:** */usr/local/Monokot/Mos/Certificates/Own/* {% hint style="info" %} Please note that these directories are hidden file system directories {% endhint %} The certificate is saved in PFX and DER formats (files monokotserver.pfx and monokotserver.der); the PFX file is then used as a server certificate each time the server starts. If the server cannot find or read the monokotserver.pfx file during boot, it will reissue the certificate, and a warning will be written to the server event log. To install a custom server security certificate, replace the monokotserver.pfx file with the required certificate in PFX format. {% hint style="info" %} Please note that the PFX file must not be password protected. An empty string should be used as password {% endhint %} After replacing the file, you need to restart the service/process/daemon for the changes to take effect. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://docs.monokot.io/basics/security-certififcate.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.