V1.0 Nonkoliseko Ntshebe October 2015 V1.1 Nonkoliseko Ntshebe March 2018

Similar documents
Configuring Windows 7 VPN (Agile) Client for authentication to McAfee Firewall Enterprise v8. David LePage - Enterprise Solutions Architect, Firewalls

Step-by-step installation guide for monitoring untrusted servers using Operations Manager

Secure IIS Web Server with SSL

Genesys Security Deployment Guide. What You Need

Windows Smart Card Logon Use Case

A certificate request and installation, can be performed by using the following tools:

The information in this document is based on these software and hardware versions:

Copyright

AirWatch Mobile Device Management

Configuration of Microsoft Live Communications Server for Partitioned Intradomain Federation

Using SSL to Secure Client/Server Connections

Scenarios for Setting Up SSL Certificates for View. Modified for Horizon VMware Horizon 7 7.3

ms-help://ms.technet.2004apr.1033/ad/tnoffline/prodtechnol/ad/windows2000/howto/mapcerts.htm

RxCheck Connection Technical Assistance Guide

Wired Dot1x Version 1.05 Configuration Guide

Setting up Certificate Authentication for SonicWall SRA / SMA 100 Series

How to Configure S/MIME for WorxMail

This PDF Document was generated for free by the Aloaha PDF Suite If you want to learn how to make your own PDF Documents visit:

Streamline Certificate Request Processes. Certificate Enrollment

VMware AirWatch Integration with RSA PKI Guide

About the Citrix Usage Collector (versions 1.0 and 1.0.1)

BROWSER-BASED SUPPORT CONSOLE USER S GUIDE. 31 January 2017

Assureon Installation Guide Client Certificates. for Version 6.4

Installation and Configuration Guide

Importing and exporting your or Personal Authentication certificate using Internet Explorer

Workspace ONE UEM Integration with RSA PKI. VMware Workspace ONE UEM 1810

Scenarios for Setting Up SSL Certificates for View. VMware Horizon 6 6.0

Wavecrest Certificate SHA-512

SCCM Plug-in User Guide. Version 3.0

VMware AirWatch Certificate Authentication for EAS with ADCS

VMware AirWatch Certificate Authentication for Cisco IPSec VPN

Importing and exporting your or Personal Authentication certificate with Opera

Secure ACS for Windows v3.2 With EAP TLS Machine Authentication

VMware AirWatch Certificate Authentication for EAS with NDES-MSCEP

RB Digital Signature Proxy Guide for Reporters

Designing and Managing a Windows Public Key Infrastructure

Installation and Configuration Guide

How to Set Up External CA VPN Certificates

Configuring EAP for Wireless Network Connectivity By Victor Zapata

This help covers the ordering, download and installation procedure for Odette Digital Certificates.

ISY994 Series Network Security Configuration Guide Requires firmware version Requires Java 1.8+

S/MIME on Good for Enterprise MS Online Certificate Status Protocol. Installation and Configuration Notes. Updated: November 10, 2011

Configure the IM and Presence Service to Integrate with the Microsoft Exchange Server

How to Enable Client Certificate Authentication on Avi

SSL Certificate Based VPN

Best Practices for Security Certificates w/ Connect

Integration Guide. Dell EMC Data Domain Operating System and Gemalto KeySecure. DD OS and Gemalto KeySecure Integration. Version 6.

VMware AirWatch Integration with Microsoft ADCS via DCOM

SAPO Trust Centre: Certificate Installation on Exchange Manual

Managing the SSL Certificate for the ESRS HTTPS Listener Service Technical Notes P/N Rev 01 July, 2012

Keytool and Certificate Management

QUICK SET-UP VERIFICATION...3

YubiKey Smart Card Deployment Guide

Fasthosts Customer Support Generating Certificate Signing Requests

Enabling Secure Sockets Layer for a Microsoft SQL Server JDBC Connection

Document Signing Certificate Getting Started Guide

Microsoft NPS Configuration Guide

Configuring Cisco Unified MeetingPlace Web Conferencing Security Features

Configuring Certificate Authorities and Digital Certificates

VMware AirWatch Certificate Authentication for EAS with NDES-MSCEP. For VMware AirWatch

Module 1 Web Application Proxy (WAP) Estimated Time: 120 minutes

Workspace ONE UEM Certificate Authentication for Cisco IPSec VPN. VMware Workspace ONE UEM 1810

Importing and exporting your or Personal Authentication certificate using Google Chrome

Cisco Secure ACS for Windows v3.2 With PEAP MS CHAPv2 Machine Authentication

Odette CA Help File and User Manual

Send documentation comments to

Internet Explorer/ Edge/ Chrome/ Opera (Windows) Edition

ms-help://ms.technet.2004apr.1033/win2ksrv/tnoffline/prodtechnol/win2ksrv/howto/efsguide.htm

Workspace ONE UEM Certificate Authority Integration with Microsoft ADCS Using DCOM. VMware Workspace ONE UEM 1811

YubiKey Smart Card Deployment Guide

Generating Certificate Signing Requests

Configuring the SFB 2015 Reverse Proxy Server for Express for Lync 3.0

Microsoft Dynamics GP Web Client Installation and Administration Guide For Service Pack 1

Configuring Claims-based Authentication for Microsoft Dynamics CRM Server. Last updated: May 2015

Logon to Windows Vista using smartcard and CertiID in a Windows 2008 environment.

Configuration examples for the D-Link NetDefend Firewall series

VMware AirWatch Integration with SecureAuth PKI Guide

Deployment guide for Duet Enterprise for Microsoft SharePoint and SAP Server 2.0

YUBIKEY AUTHENTICATION FOR CYBERARK PAS

Digital Certificates Demystified

HP JETADVANTAGE SECURITY MANAGER. Certificate Management

Certificate Retrieval Procedures

Dohatec CA. Export/Import Procedure etoken Pro 72K FOR USERS OF ETOKENS [VERSION 1.0]

Implementing Messaging Security for Exchange Server Clients

Server Certificate Preparation and Installation for Windows Server 2003

Module 3 Remote Desktop Gateway Estimated Time: 90 minutes

Install Certificate on the Cisco Secure ACS Appliance for PEAP Clients

RealPresence Access Director System Administrator s Guide

Enterprise Vault Requesting and Applying an SSL Certificate and later

20411D D Enayat Meer

CERTIFICATES AND CRYPTOGRAPHY

Workspace ONE UEM Certificate Authority Integration with JCCH. VMware Workspace ONE UEM 1810

DEPLOYMENT GUIDE. SSL Insight Certificate Installation Guide

App Orchestration 2.6

Securing U2 Soap Server

Lab - System Utilities in Windows

SPNEGO SINGLE SIGN-ON USING SECURE LOGIN SERVER X.509 CLIENT CERTIFICATES

VMware Horizon JMP Server Installation and Setup Guide. 13 DEC 2018 VMware Horizon 7 7.7

Install and Issuing your first Full Feature Operator Card

Nimsoft Service Desk. Single Sign-On Configuration Guide. [assign the version number for your book]

Transcription:

SAPO Trust Centre - Generating a SSL CSR for IIS with SAN V1.0 Nonkoliseko Ntshebe October 2015 V1.1 Nonkoliseko Ntshebe March 2018

1. Open Certificate MMC snap in for your computer 2. Click on Start > Run > MMC > File >Add/Remove Snap In > Select Certificates > Click Add > Select My Computer 3. In the Certificates snap-in, right-click the Personal folder, point to All Tasks, point to Advanced Operations, and then click Create Custom Request. This will start the Certificate Enrollment wizard.

4. Click Next. 5. Click Proceed without enrollment policy, and then click Next. 6. In the Template list, click (No template) Legacy key. For Request format, click either PKCS #10. PKCS #10 is generally accepted by all CAs. Click Next.

7. Click the Details arrow, and then click Properties. You will need to configure all the certificate request options so that the issued certificate will be suitable for TLS/SSL. 8. On the General tab: Leave all fields empty.

9. On the Subject tab: Before a) In the Subject name area under Type, select Common Name (CN). b) In the Subject name area under Value, enter the fully qualified domain name of the server (e.g. webservice.trustcentre.co.za), and then click Add. c) Repeat steps a and b above for each of the following: Country (C) Email Location(L) Organisation (O) Organisation Unit(OU) / Department State ZA admin@trustcentre.co.za Somerset West South African Post Office Limited Trust Centre Western Cape

d) In the Alternative name area under Type, click DNS. e) In the Alternative name area under Value, enter the fully qualified domain name of the server, and then click Add. f) Repeat steps c and d above for each SAN you want to specify. See picture below: After 10. On the Extensions tab: a) Click the Key usage arrow. In the Available options list, click Digital signature, and then click Add. Click Key encipherment, and then click Add.

b) Click the Extended Key Usage (application policies) arrow. In the Available options list, click Server Authentication and then click Add. c) Basic Constraints, Include Symmetric Algorithms and Custom Extension Definition, leave unchanged/default. 11. On the Private Key tab: a) Click the Cryptographic Service Provider arrow, and verify the following:

a) Choose only Microsoft RSA SChannel Cryptographic Provider is enabled. b) Click the Key options arrow. In the Key size list, select 2048 key size. Select the Make private key exportable check box. Do not select either the Allow private key to be archived or Strong private key protection check box. c) On the Select Hash Algorithm arrow. Select the sha256 option d) Click the Key Type arrow. Mark the keyset for Exchange and do NOT leave it at Signature (which is the default).

e) Click the Key permissions arrow. If the application or service runs as Network Service, grant the Network Service account Read permission. If the application or service that will use this certificate runs as Local System, no permissions changes are required.

12. Click OK. 13. Click Next. 14. Enter a path and file name indicating where the request file will be saved. 15. Select the Base 64 format. 16. Click Finish.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback