Certificate Management for your ICE Server



Similar documents
Administration Authentication for InGenius Connector Enterprise

Secure IIS Web Server with SSL

S/MIME on Good for Enterprise MS Online Certificate Status Protocol. Installation and Configuration Notes. Updated: October 08, 2014

ECA IIS Instructions. January 2005

etoken Enterprise For: SSL SSL with etoken

Entrust Managed Services PKI. Configuring secure LDAP with Domain Controller digital certificates

Wavecrest Certificate

Setup SSL in SharePoint 2013 Using Domain Certificate

APNS Certificate generating and installation

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

e-cert (Server) User Guide For Microsoft IIS 7.0

eadvantage Certificate Enrollment Procedures

NSi Mobile Installation Guide. Version 6.2

BASIC CLASSWEB.LINK INSTALLATION MANUAL

Customer Tips. Xerox Network Scanning HTTP/HTTPS Configuration using Microsoft IIS. for the user. Purpose. Background

Step-by-step installation guide for monitoring untrusted servers using Operations Manager ( Part 3 of 3)

1. Open the preferences screen by opening the Mail menu and selecting Preferences...

Installation Procedure SSL Certificates in IIS 7

Install MS SQL Server 2012 Express Edition

Scenarios for Setting Up SSL Certificates for View

Microsoft IIS Integration Guide

Configuring Security Features of Session Recording

Setting Up SSL on IIS6 for MEGA Advisor

How To Enable A Websphere To Communicate With Ssl On An Ipad From Aaya One X Portal On A Pc Or Macbook Or Ipad (For Acedo) On A Network With A Password Protected (

How to install and use the File Sharing Outlook Plugin

Exchange 2010 PKI Configuration Guide

INSTALLING YOUR SSL CERTIFICATE ON THE FILEHOLD SERVER ON WINDOWS 2008 X64 ON IIS 7

1. Open the preferences screen by opening the Mail menu and selecting Preferences...

Millennium Drive. Installation Guide

Using Entrust certificates with Microsoft Office and Windows

QUANTIFY INSTALLATION GUIDE

Cloud Services ADM. Agent Deployment Guide

Getting started with 2c8 plugin for Microsoft Sharepoint Server 2010

Generating an Apple Push Notification Service Certificate for use with GO!Enterprise MDM. This guide provides information on...

Shavlik Patch for Microsoft System Center

DIGIPASS KEY series and smart card series for Juniper SSL VPN Authentication

Managing the SSL Certificate for the ESRS HTTPS Listener Service Technical Notes P/N REV A01 January 14, 2011

Generating an Apple Push Notification Service Certificate for use with GO!Enterprise MDM. This guide provides information on...

RSA Authentication Manager 7.1 Microsoft Active Directory Integration Guide

USING SSL/TLS WITH TERMINAL EMULATION

How to Configure a Secure Connection to Microsoft SQL Server

Clearswift Information Governance

Using etoken for Securing s Using Outlook and Outlook Express

Secure Agent Quick Start for Windows

Migrating MSDE to Microsoft SQL 2008 R2 Express

Using etoken for SSL Web Authentication. SSL V3.0 Overview

Configuring ADFS 3.0 to Communicate with WhosOnLocation SAML

Generating an Apple Enterprise MDM Certificate

1. Navigate to Control Panel and click on User Accounts and Family Safety. 2. Click on User Accounts

User Manual. Onsight Management Suite Version 5.1. Another Innovation by Librestream

Using LifeSize systems with Microsoft Office Communications Server Server Setup

Installation and Configuration Guide

DESLock+ Basic Setup Guide Version 1.20, rev: June 9th 2014

The cloud server setup program installs the cloud server application, Apache Tomcat, Java Runtime Environment, and PostgreSQL.

Global Image Management System For epad-vision. User Manual Version 1.10

DriveLock Quick Start Guide

Internet Script Editor (ISE)

Exostar LDAP Proxy / Secure Setup Guide. This document provides information on the following topics:

Copyright

Active Directory Management. Agent Deployment Guide

Creating an Apple APNS Certificate

CA NetQoS Performance Center

Jumble for Microsoft Outlook

MadCap Software. Upgrading Guide. Pulse

ProjectWise Mobile Access Server, Product Preview v1.1

Virtual Office Remote Installation Guide

Generating an Apple Push Notification Service Certificate

DESlock+ Basic Setup Guide ENTERPRISE SERVER ESSENTIAL/STANDARD/PRO

Microsoft IIS 4 Guide to Installing Root Certificates, Generating CSR and Installing SSL Certificate

Novell ichain Guide to Installing Root Certificates, Generating CSR and Installing SSL Certificate

Initial Setup of Microsoft Outlook 2011 with IMAP for OS X Lion

Using TLS Encryption with Microsoft Outlook 2007

Certificate Management

Outlook Web Access Guide to Installing Root Certificates, Generating CSR and Installing SSL Certificate

NovaBACKUP xsp Version 15.0 Upgrade Guide

Using Internet or Windows Explorer to Upload Your Site

Configure SecureZIP for Windows for Entrust Entelligence Security Provider 7.x for Windows

Microsoft Exchange 2010 and 2007

Installing and Configuring vcenter Multi-Hypervisor Manager

SOS SO S O n O lin n e lin e Bac Ba kup cku ck p u USER MANUAL

Microsoft OCS with IPC-R: SIP (M)TLS Trunking. directpacket Product Supplement

QMX ios MDM Pre-Requisites and Installation Guide

Reconfiguring VMware vsphere Update Manager

You will need your District Google Mail username (e.g. and password to complete the activation process.

Set Up Setup with Microsoft Outlook 2007 using POP3

SAS 9.3 Foundation for Microsoft Windows

Windows Live Mail Setup Guide

WHITE PAPER Citrix Secure Gateway Startup Guide

Using Remote Web Workplace Version 1.01

Contents Notice to Users

SETUP SSL IN SHAREPOINT 2013 (USING SELF-SIGNED CERTIFICATE)

Xerox Multifunction Devices. Verify Device Settings via the Configuration Report

Web Remote Access. User Guide

X.509 Certificate Generator User Manual

NetIQ Sentinel Quick Start Guide

Creating client-server setup with multiple clients

Set up SSL in Deployment Solution 7.5

Installation Guide. SafeNet Authentication Service

Account Create for Outlook Express

Entrust Managed Services PKI

Transcription:

Certificate Management for your ICE Server Version 2.23.301 Contact: sales@ingenius.com +1-613-591-9002 x3000 TRADEMARKS InGenius, InGenius Connector Enterprise and the InGenius logo are trademarks of InGenius Software Inc. Windows and Microsoft are trademarks of Microsoft Corporation. Salesforce.com is trademark of Salesforce.com. Other product names mentioned in this document may be trademarks of their respective companies and are hereby acknowledged. 1

TABLE OF CONTENTS 1 Certificate Management Overview... 3 1.1 Server Certificate Status... 4 1.2 Bound Certificate Highlighting... 4 2 Installing a Certificate... 5 2.1 Import a Certificate... 5 2.2 Bind a Certificate... 6 2.3 Converting to/from secure protocol after ICE is already installed... 7 3 Additional Certificate Management Functionality... 8 3.1 Unbind a Certificate... 8 3.2 Request Domain Certificate/ Retrieve Pending Domain Certificate Request... 9 3.2.1 Domain Certificate... 10 3.2.2 Pending Certificate... 10 3.2.3 Third-Party Certificate... 10 3.3 Complete Certificate Request... 11 3.4 Generate Self-Signed Certificate... 12 3.5 Additional Features... 12 4 Additional Certificate Information... 13 4.1 Creating a new Certificate Server for your Domain Windows 2008 R2... 13 4.2 Verify the install of the Certificate Server on your Domain... 14 4.3 References... 14 2

1 Certificate Management Overview The Certificate Management for the ICE Server supports the ability to import certificates into the local machine store, request and retrieve domain certificates from a certification authority, generate self-signed certificates, as well as bind and unbind certificates. The tool displays only the certificates located in the personal directory of the local machine store. The Certificate Management can be found on the Configuration/General Tab of the ICE Server Configuration Tool. 3

1.1 Server Certificate Status When viewing the Certificate Management within the ICE Server Configuration Tool, the certificate status for the ICE server will be display in the top left corner of the tool. 1.2 Bound Certificate Highlighting All certificates in the personal directory of the local machine store will be displayed in the list. Any certificates that are bound will be highlighted green and the ports which they are bound to will display in the Ports column. 4

2 Installing a Certificate 2.1 Import a Certificate Certificates can be imported into the local machine store. This step assumes that you ve already requested and received a certificate from a third party authorized provider or domain certificate (See later sections on how to acquire a certificate) 1. Press the Import Certificate..." button on the top right of the certificate management dialog. 2. Clicking the button will cause an Open File Dialog to appear. Select a certificate to Import. 3. You will be prompted to enter a password after selecting a certificate to import if it is required. 4. A success message will appear after the certificate has been imported. 5

2.2 Bind a Certificate This step assumes that you have your certificate imported on the ICE server already. 1. Highlight a certificate within the certificate list. 2. The Bind Certificate button will become active. Press the button. 3. Confirm that you wish to bind the certificate to the current port. 4. The newly bound certificate will be highlighted green, and the current server port will be added to the list of bound ports for that current certificate. 6

2.3 Converting to/from secure protocol after ICE is already installed Note: This section ONLY applies to previously installed ICE Servers. If the ICE server was previously install and configured without a certificate, updates will have to be made to the CRM configuration to reflect http/https protocol change once the certificate is installed. Salesforce: Once the certificate is installed and bound and the ICE service started; 1) Go into the Runtime Administration page, Salesforce tab. 2) Go into the Call Center Profiles. 3) Download the Call Center(s) again 4) Within Salesforce, remove the old copies of the Call Center(s). 5) Import the updated versions and re-assign the users respectively. MSCRM: Once the certificate is installed and bound and the ICE service started; 1) Within the ICE Configuration Tool, go to the Integrations tab and press the "Generate" to get the new solution 2) In Dynamics, go into "Settings", "Solutions" 3) Delete the old ICE solution 4) "Import" the new version 5) Then click "Publish All Customizations" 6) Go into the Runtime Administration page, MSCRM tab. 7) If there are any CTI Profiles besides the Default in use, download the Configuration file and replace it in Dynamics as per the instructions there. 7

3 Additional Certificate Management Functionality 3.1 Unbind a Certificate 1. Highlight a certificate within the certificate list. 2. The Unbind Certificate button will become active. Press the button. 3. If the certificate was bound to more than one port, a dialog will appear to select which port you wish to unbind. 4. The green highlight will be removed from any certificates no longer bound to a port. 8

3.2 Request Domain Certificate/ Retrieve Pending Domain Certificate Request Note: This feature is available to users running Windows Server 2008 and above. For unsupported operating systems the "Request Domain Certificate..." button will not be visible. Note: The Create Certificate Request button will be disabled if there are no pingable certification authorities present. A request for a domain certificate can be submitted to a certification authority through the "Create Certificate Request" button. From here, you can do three things: Create a domain certificate request. Retrieve a pending domain certificate request. Create a third party certificate request to be saved and submitted to a certificate provider. Once a certificate type is selected the options for the certificate type will appear. 9

3.2.1 Domain Certificate To create a Domain Certificate Request: 1. Browse to the domain s Certification Authority. 2. Enter a Friendly Name 3. Fill in the Distinguishing Name Properties a. Enter the Fully qualified domain name of the server ICE.local.com b. Enter your organization name for this site for example test site c. Enter your Organization unit for this we server for example main office d. Enter your City / location e. Enter your State/Province f. Enter your Country code for example CA or US 4. Select the type of certificate request a. Cryptographic type = RSA b. Bit Length = 2048 5. Press finish to submit the Domain Certificate Request 3.2.2 Pending Certificate To check on a Pending Domain Certificate Request: 1. Choose the pending request. 2. Click Retrieve. This will return the status of the pending request. If the certificate is ready and can be retrieved, the certificate will be installed to the server. 3.2.3 Third-Party Certificate To create a Third Party Certificate Request: 3. Browse to a file location and enter a name you d like to save the request as 4. Fill in the Distinguishing Name Properties a. Enter the Fully qualified domain name of the server ICE.local.com b. Enter your organization name for this site for example test site c. Enter your Organization unit for this we server for example main office d. Enter your City / location e. Enter your State/Province f. Enter your Country code for example CA or US 5. Select the type of certificate request a. Cryptographic type = RSA b. Bit Length = 2048 6. Press finish to save the request file. 7. Use the file contents to submit your request to the third party certificate authority. 10

3.3 Complete Certificate Request Complete a previously created certificate request: 1. Browse to for the file containing the certification authority s response. 2. Enter a Friendly Name 3. Click Finish to install the certificate to the server. 11

3.4 Generate Self-Signed Certificate Note: This feature is available to users running Windows Server 2008 and above. For unsupported. For unsupported operating systems the "Generate Self-Signed Certificate..." button will not be visible. Note: Self-signed certificates can be useful for testing and Q/A environments but should not be used for deployed call center environments. Generating a self-signed certificate can be done from within the tool. As with a domain certificate the name of the certificate will be the same as the host name of the ICE server. When the button is pressed a self-signed certificate will be created and installed into the machine store. It will also appear in the list of certificates for the user to choose from. 3.5 Additional Features Right-clicking on the list of certificates will allow the user to refresh the list of certificates to reflect any changes. Double-clicking on any certificate will bring up a dialog that contains detailed information about the selected certificate. A status bar on the bottom of the list displays the currently displayed certificate. Clicking on the status bar will cause a drop down menu to appear with the options to toggle showing bound certificates or showing all certificates. 12

4 Additional Certificate Information The following is additional information about certificates that can be done outside of the Configuration Management of ICE Configuration Tool. 4.1 Creating a new Certificate Server for your Domain Windows 2008 R2 This steps requires you use a standalone box and have experience with windows server install. Setup new VM / computer with Windows 2008 R2 Join the machine to your domain and make sure you have a unique name for the machine for example CertServer01 Open Roles Start -> Administrator tools -> server manager. Expand roles on the left side menu and then select add roles link 1. Select next on the first window 2. Select Active Directory Certificate Services 3. Select Certification Authority and Certification Authority Web Enrollment Options 4. Select the Enterprise Option as the machine is part of the domain 5. Select Root CA as this will be its own sign Certificate server for the local domain 6. Select Create a New Private Key 7. Select the type of encryption a. RSA #Microsoft Software Key Storage Provider b. 4096 Key length c. SHA256 Hash Algorithm 8. Enter the name of the server Should inherit the name of the hostname. CertServer01 9. Select the age of the Certificate age Should be double to the length that you think you will need before replacing your Certificate server. 6 years. 10. Enter the location of where the server will store the databases- Local drive is ok if it s on Raid system that is backed up 11. IIS Setting - Default is ok 12. Complete the install. 13

4.2 Verify the install of the Certificate Server on your Domain Login to any domain computer other than the certificate server Run MMC from the start menu and select the following options a. Double click on Certificates b. Select option Computer Account c. Select option Local computer d. Finish Expand the menu Trusted Root Certification Authorities -> Certificates Look for your new server name with the list 4.3 References Refer to the following Video on YouTube for further in depth detail on how the certificates are controlled and signed. Certificate Services / 2008 R2 - SSL Part 1 http://www.youtube.com/watch?v=8vmaunuqst0 Certificate Services / 2008 R2 - SSL Part 2 http://www.youtube.com/watch?v=2wt_7jtbzby William Grismore at ITVideoCoach.com 14

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information