SETUP SSL IN SHAREPOINT 2013 (USING SELF-SIGNED CERTIFICATE)



Similar documents
Setup SSL in SharePoint 2013 Using Domain Certificate

HTTP communication between Symantec Enterprise Vault and Clearwell E- Discovery

Wavecrest Certificate

Setting Up SSL on IIS6 for MEGA Advisor

BASIC CLASSWEB.LINK INSTALLATION MANUAL

HTTP Server Setup for McAfee Endpoint Encryption (Formerly SafeBoot) Table of Contents

LAB 1: Installing Active Directory Federation Services

How To Enable A Websphere To Communicate With Ssl On An Ipad From Aaya One X Portal On A Pc Or Macbook Or Ipad (For Acedo) On A Network With A Password Protected (

Learn how to create web enabled (browser) forms in InfoPath 2013 and publish them in SharePoint InfoPath 2013 Web Enabled (Browser) forms

etoken Enterprise For: SSL SSL with etoken

CA NetQoS Performance Center

NSi Mobile Installation Guide. Version 6.2

EM L12 Symantec Mobile Management and Managed PKI Hands-On Lab

AvePoint Meetings for SharePoint On-Premises. Installation and Configuration Guide

Customer Tips. Xerox Network Scanning HTTP/HTTPS Configuration using Microsoft IIS. for the user. Purpose. Background

S/MIME on Good for Enterprise MS Online Certificate Status Protocol. Installation and Configuration Notes. Updated: October 08, 2014

Step-by-step installation guide for monitoring untrusted servers using Operations Manager ( Part 3 of 3)

Configuring Load Balancing

Tenrox. Single Sign-On (SSO) Setup Guide. January, Tenrox. All rights reserved.

Microsoft Exchange 2010 and 2007

Secure IIS Web Server with SSL

Enable SSL for Apollo 2015

Microsoft Corporation. Project Server 2010 Installation Guide

RoomWizard Synchronization Software Manual Installation Instructions

ECA IIS Instructions. January 2005

Desktop Surveillance Help

SQL Server 2008 and SSL Secure Connection

Create, Link, or Edit a GPO with Active Directory Users and Computers

DMZ Server monitoring with

Getting Started. Install the Omni Mobile Client

Ekran System Help File

How to Configure a Secure Connection to Microsoft SQL Server

ADFS Integration Guidelines

Getting started with 2c8 plugin for Microsoft Sharepoint Server 2010

SolarWinds Technical Reference

Password Reset Server Installation Guide Windows 8 / 8.1 Windows Server 2012 / R2

Set up SSL in Deployment Solution 7.5

Mobility Manager 9.0. Installation Guide

WHITE PAPER Citrix Secure Gateway Startup Guide

Browser-based Support Console

Trend Micro Worry-Free Remote Manager Agent Installation Guide

Aspera Connect User Guide

e-cert (Server) User Guide For Microsoft IIS 7.0

isupplier PORTAL ACCESS SYSTEM REQUIREMENTS

BT Office Anywhere Configuring Mobile Outlook Synchronisation with Exchange Server

MadCap Software. Upgrading Guide. Pulse

Outlook Web Access Guide to Installing Root Certificates, Generating CSR and Installing SSL Certificate

Nintex Workflow 2010 Installation Guide. Installation Guide Nintex USA LLC, All rights reserved. Errors and omissions excepted.

RSA Security Analytics

Millennium Drive. Installation Guide

Installing a Browser Security Certificate for PowerChute Business Edition Agent

ProSystem fx Document

BusinessLink Software Support

Installation Guide. SafeNet Authentication Service

Jeff Schertz MVP, MCITP, MCTS, MCP, MCSE

Generating an Apple Enterprise MDM Certificate

How To Take Advantage Of Active Directory Support In Groupwise 2014

Shavlik Patch for Microsoft System Center

A guide to https and Secure Sockets Layer in SharePoint Release 1.0

Deploying Remote Desktop IP Virtualization Step-by-Step Guide

How to Enable LDAP Directory Services Authentication to Microsoft Active Directory in the HP cclass Onboard Administrator

Using RPC over HTTP with Exchange Server 2003 SP1

How to: Install an SSL certificate

Setting Up on Your Palm. Treo 700wx Smartphone

Setup Guide for AD FS 3.0 on the Apprenda Platform

ESET SECURE AUTHENTICATION. API SSL Certificate Replacement

Configuring Secure Socket Layer (SSL) for use with BPM 7.5.x

Internet Script Editor (ISE)

O Reilly Media, Inc. 3/2/2007

MicrosoftDynam ics GP TenantServices Installation and Adm inistration Guide

DigitalPersona Pro Server for Active Directory v4.x Quick Start Installation Guide

How to add your Weebly website to a TotalCloud hosted Server

User Manual. Onsight Management Suite Version 5.1. Another Innovation by Librestream

Microsoft Office Web Apps Server 2013 Integration with SharePoint 2013 Setting up Load Balanced Office Web Apps Farm with SSL (HTTPS)

Dell SupportAssist Version 2.0 for Dell OpenManage Essentials Quick Start Guide

Exchange 2010 PKI Configuration Guide

Installation Procedure SSL Certificates in IIS 7

Sophos Anti-Virus for NetApp Storage Systems startup guide

Deploying Personal Virtual Desktops by Using RemoteApp and Desktop Connection Step-by-Step Guide

Installation and Deployment

Integration Guide. Microsoft Active Directory Rights Management Services (AD RMS) Microsoft Windows Server 2008

HELP DOCUMENTATION E-SSOM DEPLOYMENT GUIDE

Using Remote Web Workplace Version 1.01

ez Agent Administrator s Guide

Configuring ADFS 3.0 to Communicate with WhosOnLocation SAML

Windows Mobile SSL Certificates

Using Self Certified SSL Certificates. Paul Fisher. Quest Software. Systems Consultant. Desktop Virtualisation Group

Using Microsoft Internet Explorer 6 (Windows 2000/ Windows XP/ Windows Server 2003)

How to configure HTTPS proxying in Zorp 5

Deploying SSL Certificates on MS Exchange and EMC

Microsoft IIS 4 Guide to Installing Root Certificates, Generating CSR and Installing SSL Certificate

DIGIPASS KEY series and smart card series for Juniper SSL VPN Authentication

App Orchestration 2.5

6421B: How to Install and Configure DirectAccess

HP Device Manager 4.7

USER GUIDE WEB-BASED SYSTEM CONTROL APPLICATION. August 2014 Phone: Publication: , Rev. C

How to move a SharePoint Server bit environment to a 64-bit environment on Windows Server 2008.

WhatsUp Gold v16.3 Installation and Configuration Guide

Run Archive Server for MDaemon in HTTPS

Transcription:

12/15/2012 WALISYSTEMSINC.COM SETUP SSL IN SHAREPOINT 2013 (USING SELF-SIGNED CERTIFICATE)

Setup SSL in SharePoint 2013 In the last article (link below), you learned how to setup SSL in SharePoint 2013 using commercial certificate. Setup SSL in SharePoint 2013 using commercial certificates In this article, you will learn how to setup SSL using self-signed certificate. This is useful if you are setting up a development environment or want to test SSL locally. It provides same level of protection as any other commercial certificate and you don t have to pay for it. Why then people use commercial certificates? It s a matter of trust. Basically you are asking your site users to trust you. It may work in some scenarios but might not work if your site is public facing (Internet). Why would people search you, they don t know you. So, you can use self-signed certificate locally for testing but for production you should use a reliable third party certificate issuing authority like Verisign, Thwarte, etc. Follow the steps below to create a self-signed certificate for your site: 1. Open IIS 7.0. 2. Click on the server name in the navigation tree on the left. 3. On the right side, Under IIS, double-click Server Certificates. 4. On the extreme right, under Actions click Create Self-Signed Certificate link. 5. Enter a friendly name for the certificate, for example, I entered WS (for Wali Systems). 6. Double-click the newly created certificate. 7. Click on Details tab. 8. Click Copy to File button. 9. Certificate export wizard will start. Click Next. 10. By default second option No, do not export the private key is selected. Keep it selected and click Next. 11. Keep the default option DER encoded binary X.509 (.CER) selected and click Next.

12. Click Browse to go to the folder where you want the file to be saved. Enter file name and click Save. 13. Click Next and then Finish. Click Ok to close the success message box. Click OK to close the Certificate window. The steps that follow are same as those demonstrated in the previous article. Certificates are issued to a computer, user. Or service. Administrators can add certificates to the Trusted Root Certification Authorities Store for a local computer or for a domain. Below, we will add certificate to the local computer store. 14. Click Start > Run and type mmc and click OK. MMC console will open. 15. From File, select Add/Remove Snap-in. 16. Select Certificates from available snap-ins and click Add >. 17. Select first option My user account and click Finish. 18. Click OK. 19. Expand Certificates Current User node. 20. Expand Trusted Root Certification Authorities and click Certificates folder. 21. Right-click Certificates folder and select All Tasks then select Import. 22. Browse to the certificate (.cer) file that you saved earlier. Click Next. 23. Select Place all certificates in the following store and leave default store selected. Click Next. 24. Click Finish. 25. You will get The import was successful message. Click Ok. If you share this server with others, then it s better to import the certificate using local computer account. Follow steps 14 25 again but this time in step 17, instead of selecting My user account, select Computer account. After you have imported certificate into Trusted Root Certification Authorities, import it into SharePoint Certificates as well. Expand SharePoint node, right-click Certificates node and import the certificate.

Manage Trust 26. This step is not required if you have a single server farm but if you are setting it up in a medium or large farm, then you should add certificate to the Trust Relationships in central administration site. 27. Open central administration site. Go to Security section (Click Security under Central Administration on the left). 28. In General Security section, click Manage Trust. 29. In the ribbon, click New button. 30. Add a name for this trust relationship. 31. Click Browse to import the certificate. This is mandatory regardless of whether you want to provide to or consume trust from the other farm. 32. Leave Provide Trust Relationship unchecked unless you want to provide trust to another farm. This is optional. 33. Click OK. You can also add certificate using PowerShell. Open SharePoint 2013 Management Shell and run following command: $trustcert = new-object system.security.cryptography.x509certificates.x509certificate2( C:\\ws.cer ) New-sptrustedrootauthority name SP Cert certificate $trustcert ** C:\\ws.cer is the path to the certificate file. Change it to the path on your machine. ** SP Cert is the name that you give to this trust relationship. This is what will appear in the Manage Trust interface in SharePoint Central Admin.

Your site should have correct host headers if you want this certificate to work correctly. For example, if you look at the figure above, you will notice that the certificate was issued to sp2013.walisystems.com so if your site does not have this host header, you will get an error. For example, when you try to open your site in the browser, you get this error:

Figure: There is a problem with this website s security certificate Again, notice that I tried to open https://www.walisystems.com but the certificate was issued to sp2013.walisystems.com. If you click Continue to this website, site will open but you will still get an error message.

Figure: Mismatched Address Error: The security certificate presented by this website was issued for a different website s address. This problem might indicate an attempt to fool you or intercept any data you send to the server. To resolve the issue, create a new web application or extend an existing one. If you want to add https to your main site at port 80, then create a new web application with new host headers. Here are the steps: Create New Web Application For SSL 34. Go to central administration. Click Manage web applications. 35. Click New button in the ribbon. 36. Select Create a new IIS web site. Change Port to 80. 37. In the Host Header, enter the URL that want to use for this web application. For example, I wanted to use sp2013.walisystems.com because that was the URL for which the certificate was issued therefore I entered sp2013.walisystems.com. Note: Do not add HTTP in the URL. 38. In Security Configuration section, select Yes in Use Secure Sockets Layer (SSL). 39. Keep all other default options selected and click OK.

40. After web application is created, create a site collection at the root level. Change Alternate Access Mappings 41. In Central Administration Site, go to Application Management section and click Configure alternate access mappings. 42. Change site collection in the drop down. Select the one that you just created. Click Add Internal URLs. 43. Enter complete URL that starts with HTTPS. For example, https://sp2013.walisystems.com. 44. Change Zone to Custom or Extranet. 45. Click Save. Bind Certificate To Your Site 46. Finally, bind certificate to your site. Open IIS. 47. Click server name. Expand Sites node. 48. Click site name that you will bind to the SSL certificate. 49. On the right, under Actions, click Bindings. 50. Click Add. 51. In Type, select https. 52. Keep 443 in the Port. This is default port used for SSL. 53. In SSL Certificate, select the certificate you just installed. Click OK. That s it.

To test SSL setup, open the site in browser. In the address bar, click the lock sign to check validity of the certificate. If you want to see the certificate, click View Certificates link at the bottom of the notification.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information