Update:
- The suggestion to widen the scope of the “windowscert” UMC extension to all computer types still stands
- I polished my Google-fu and found some relevant knowledge base article
Will post here when I have successfully installed https to the switch …
(there is the extra requirement of a DH 1024-bit params file dhparams.pem, and I’m not sure about this one yet)