Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
○ Requirements
○ Troubleshooting
○ REFERENCES
Expand all | Collapse all
SUMMARY
The Internet has opened up new ways for organizations to
communicate, both inte...
The Internet has opened up new ways for organizations to communicate, both internally and
externally. Better communication between employees, vendors, and customers enables an
organization to cut costs, bring products to market faster, and build stronger customer
relationships. This improved communication requires--at times--transmitting sensitive
information over the Internet and intranets. It thus becomes imperative to be able to conduct
private, tamper-proof communication with known parties. To bring this about, organizations
can build a secure infrastructure based on public-key cryptography by using digital
certificates with technologies such as Secure Sockets Layer (SSL). This step-by-step guide
discusses how to set up SSL on an Information Services (IIS) computer.
Note The IIS Certificate Wizard will only recognize the Default Web Server template. When
you select an Online Enterprise CA, the Authority will not be listed unless the CA is using
the Default Web Server template.
1. Open a browser and browse to
http://YourWebServerName/CertSrv/.
2. In IIS 5.0, select Request a Certificate and click Next.
In IIS 6.0, click Request a certificate.
3. In IIS 5.0, select Advanced Request and click Next. In
IIS 6.0, click advanced certificate request.
4. In IIS 5.0, select Submit a Certificate Request using
a Base64 and click Next. In IIS 6.0, click Submit a
certificate request by using a base-64-encoded CMC
or PKCS #10 file, or submit a renewal request by
using a base-64-encoded PKCS #7 file.
5. In Microsoft Notepad, open the request document that
you created in the "Create a certificate request" section.
In IIS 6.0, you can also click Browse for a file to
insert.
6. Copy the contents of the document. The contents
should resemble the following:
7. -----BEGIN NEW CERTIFICATE REQUEST-----
8. MIICcjCCAhwCAQAwYjETMBEGA1UEAxMKcm9ic3NlcnZl
cjELMAkGA1UECxMCTVMx
9. CzAJBgNVBAoTAk1TMREwDwYDVQQHEwhCZWxsZXZ1ZTER
MA8GA1UECBMIV2FzaGl0
10.b24xCzAJBgNVBAYTAlVTMFwwDQYJKoZIhvcNAQEBBQAD
SwAwSAJBALYK4sYDNQ7h
11.LmSfL0qpIvUfY7Ddw7fNCvDp3rM7z4QqoLhA2c8Tkyam
qWTBsV0WRHIidf/J6mU4
12.wN4wrUzJTLUCAwEAAaCCAVMwGgYKKwYBBAGCNw0CAzEM
Fgo1LjAuMjE5NS4yMDUG
13.CisGAQQBgjcCAQ4xJzAlMA4GA1UdDwEB/wQEAwIE8DAT
BgNVHSUEDDAKBggrBgEF
14.BQcDATCB/QYKKwYBBAGCNw0CAjGB7jCB6wIBAR5aAE0A
aQBjAHIAbwBzAG8AZgB0
15.ACAAUgBTAEEAIABTAEMAaABhAG4AbgBlAGwAIABDAHIA
eQBwAHQAbwBnAHIAYQBw
16.AGgAaQBjACAAUAByAG8AdgBpAGQAZQByA4GJAGKa0jzB
n8fkxScrWsdnU2eUJOMU
17.K5Ms87Q+fjP1/pWN3PJnH7x8MBc5isFCjww6YnIjD8c3
OfYfjkmWc048ZuGoH7Zo
18.D6YNfv/SfAvQmr90eGmKOFFiTD+hl1hM08gu2oxFU7mC
vfTQ/2IbXP7KYFGEqaJ6
19.wn0Z5yLOByPqblQZAAAAAAAAAAAwDQYJKoZIhvcNAQEF
BQADQQCgRCWkaXlY2nVa
20.tbn6p5miPwWfrbViYo0B62wkuH0f7J0nSGcxMnn/6Q/i
LEIsgHqFhox5PWCzIV0J
21.tXKPWrBL
22.-----END NEW CERTIFICATE REQUEST-------
23. Paste the contents of the document into the Web form's
Base64 Encoded Certificate Request text box.
24. Under Certificate Template, select Web Server or
User, and then click Submit.
25. If Certificate Server is set to Always Issue the
Certificate, you can access the certificate immediately.
To do this, follow these steps:
a. Click Download CA Certificate (do not click
Download CA Certificate path or Download
certificate chain).
b. When you are prompted, select Save this file to
disk and save the certificate to your desktop or
another location that you will remember. You
may now go directly to the "Install the
certificate and set up an SSL Web site" section.
Back to the top
Issue and download a certificate
To issue a certificate in Certificate Server, follow these steps:
1. Open the CA MMC snap-in. To do this, click Start,
point to Programs, point to Administrative Tools, and
then click Certificate Authority.
2. In IIS 5.0, expand Certificate Authority and click the
Pending Requests folder. Your pending certificate
requests appear in the right pane. In IIS 6.0, expand the
server name.
3. Right-click the pending certificate request that you just
submitted, select All Tasks, and then click Issue.
APPLIES TO
• Microsoft Internet Information Services 5.0, when used
with:
○ the operating system: Microsoft Windows 2000
• Microsoft Internet Information Services 6.0, when used
with:
○ Microsoft Windows Server 2003, Web Edition
○ Microsoft Windows Server 2003, Datacenter
Edition (32-bit x86)
○ Microsoft Windows Server 2003, Enterprise
Edition (32-bit x86)
○ Microsoft Windows Server 2003, Standard
Edition (32-bit x86)
132 0
9089 LABEL 0
Yes
No
I don't know
9086 CHOICE 0
Yes
No
9087 TEXT-BLOCK 0