+ Post New Thread
Results 1 to 5 of 5
Windows Server 2008 R2 Thread, Creating an SSL Cert using windows certificate services in Technical; We have a number of devices that use a https web interface for management. They have their own certificate, but ...
  1. #1

    RabbieBurns's Avatar
    Join Date
    Apr 2008
    Location
    Sydney
    Posts
    5,512
    Thank Post
    1,320
    Thanked 469 Times in 306 Posts
    Blog Entries
    6
    Rep Power
    199

    Creating an SSL Cert using windows certificate services

    We have a number of devices that use a https web interface for management. They have their own certificate, but this is untrusted.

    I'm looking to use active directory certificate services to create a cert that I can install onto these devices, but not sure where to begin.

    Can someone point me to the right HOW-To or such please?

  2. #2

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,076
    Thank Post
    853
    Thanked 2,676 Times in 2,270 Posts
    Blog Entries
    9
    Rep Power
    769
    Use the webserver to create a CSR: IIS SSL Certificate CSR Creation - Microsoft IIS 7

    go to the certservices website of your cert services machine /certsrv I think and then submit the request text, this will give you a file to download which you then apply to the requesting server which has the other half. Once it is made you can export it and its public key from the certificates snapin in MMC to use on other servers/firewalls etc.

  3. #3

    RabbieBurns's Avatar
    Join Date
    Apr 2008
    Location
    Sydney
    Posts
    5,512
    Thank Post
    1,320
    Thanked 469 Times in 306 Posts
    Blog Entries
    6
    Rep Power
    199
    My ADSC is running on a DC. When I try to add the Web component roles, it says about adding a user to a local IIS group. But I cannot access the local accounts as it is a DC?

  4. #4


    Join Date
    Feb 2007
    Location
    51.405546, -0.510212
    Posts
    8,765
    Thank Post
    222
    Thanked 2,630 Times in 1,938 Posts
    Rep Power
    779

  5. Thanks to Arthur from:

    RabbieBurns (15th March 2013)

  6. #5

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,076
    Thank Post
    853
    Thanked 2,676 Times in 2,270 Posts
    Blog Entries
    9
    Rep Power
    769
    Quote Originally Posted by RabbieBurns View Post
    My ADSC is running on a DC. When I try to add the Web component roles, it says about adding a user to a local IIS group. But I cannot access the local accounts as it is a DC?
    Yes, perhaps selfssl as below, they don't like you running Cert services on a DC as it makes it impossible to migrate (or at least it used to).

  7. Thanks to SYNACK from:

    RabbieBurns (15th March 2013)

SHARE:
+ Post New Thread

Similar Threads

  1. help with installing smoothwall ssl cert using gpo
    By woodham in forum Internet Related/Filtering/Firewall
    Replies: 4
    Last Post: 12th November 2012, 10:39 AM
  2. Replies: 14
    Last Post: 5th December 2011, 01:25 PM
  3. cc3 network - rebuild using windows deployment services
    By sandeep2504 in forum Network and Classroom Management
    Replies: 6
    Last Post: 10th August 2010, 09:10 PM
  4. Replies: 1
    Last Post: 18th April 2008, 09:31 AM
  5. Streaming Video using Windows Media Services 2008 What Rules in ISA?
    By benIT in forum Virtual Learning Platforms
    Replies: 5
    Last Post: 26th March 2008, 05:12 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •