SMC behind apache reverse proxy with lets encrypt certificates

Question

Hello, 
 we are currently using SMC with a StartSSL-Certificate which is expiring soon, so we need to have an alternative. 
 One option would be to put SMC behind a apache reverse proxy which is using lets encrypt certificates. The exchange of the certificate on this reverse proxy is already automated for other hosts behind it. 
 Between the reverse proxy and the SMC we would use a long-term Certificate issued by our internal CA. 
 Does anybody uses such a scenario successfully together with SMC? Do we have to make SMC aware of the certificate changes? 
 Thanks for any hints, 
 Thomas

Ali Erdem Sunar · Answer

Dear Thomas, 
 If you want to replace your old certificate with another one, You must to use "SMC - SSL Certificate Wizard" application for creating new CS request. And after this one, you can import your new SSL certificate througt your MDM Administrator Panel. If you let us know what you want to do and if there is an error, we can be more helpful. 
 Best regards... 
 Ali Erdem Sunar

Ali Erdem Sunar · Answer

Hello Thomas, 
 This certificate using for 2 reasons: 
 
 For MDM interface on Web. 
 Device Encryption for mobile devices (If you have Advanced License on MDM). 
 
 I know this is using for these reasons. 
 Best regards... 
 Ali Erdem Sunar 
 Sophos Certified Engineer