Deploying Web Server Certificate for Site Systems that Run IIS

Similar documents
Creating and Issuing the Workstation Authentication Certificate Template on the Certification Authority

HTTP communication between Symantec Enterprise Vault and Clearwell E- Discovery

DigitalPersona Pro Server for Active Directory v4.x Quick Start Installation Guide

Step-by-step installation guide for monitoring untrusted servers using Operations Manager ( Part 3 of 3)

Protecting Juniper SA using Certificate-Based Authentication. Quick Start Guide

Basic Exchange Setup Guide

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

Parallels Mac Management for Microsoft SCCM 2012

Basic Exchange Setup Guide

Active Directory integration with CloudByte ElastiStor

NSi Mobile Installation Guide. Version 6.2

Setting Up SSL on IIS6 for MEGA Advisor

To install the SMTP service:

Configuring Network Load Balancing with Cerberus FTP Server

Microsoft OCS with IPC-R: SIP (M)TLS Trunking. directpacket Product Supplement

Step-by-step installation guide for monitoring untrusted servers using Operations Manager (Part 1 of 3)

Configuration Task 3: (Optional) As part of configuration, you can deploy rules. For more information, see "Deploy Inbox Rules" below.

Active Directory Software Deployment

DESLock+ Basic Setup Guide Version 1.20, rev: June 9th 2014

How To Install Ctera Agent On A Pc Or Macbook With Acedo (Windows) On A Macbook Or Macintosh (Windows Xp) On An Ubuntu (Windows 7) On Pc Or Ipad

Setup SSL in SharePoint 2013 Using Domain Certificate

ACTIVE DIRECTORY DEPLOYMENT

Windows Server Update Services 3.0 SP2 Step By Step Guide

Managing User Accounts

How to Configure a Secure Connection to Microsoft SQL Server

HTTP Server Setup for McAfee Endpoint Encryption (Formerly SafeBoot) Table of Contents

TIBCO Spotfire Automation Services Installation and Configuration

BusinessObjects Enterprise XI Release 2

HOTPin Integration Guide: DirectAccess

RSA Security Analytics

NetWrix Password Manager. Quick Start Guide

Use the below instructions to configure your wireless settings to connect to the secure wireless network using Microsoft Windows Vista/7.

ESET SECURE AUTHENTICATION. API SSL Certificate Replacement

Document Classification: Public Document Name: SAPO Trust Centre - Generating a SSL CSR for IIS with SAN Document Reference:

YubiKey PIV Deployment Guide

Step-by-Step Guide for Setting Up VPN-based Remote Access in a

AVG Business SSO Connecting to Active Directory

How To Enable A Websphere To Communicate With Ssl On An Ipad From Aaya One X Portal On A Pc Or Macbook Or Ipad (For Acedo) On A Network With A Password Protected (

AD CS.

Managing User Accounts

Integration Guide. SafeNet Authentication Service. SAS Using RADIUS Protocol with Microsoft DirectAccess

Monitoring Inventory. Inventory Management. This chapter includes the following sections:

Converting Prospects to Purchasers.

PRODUCT WHITE PAPER LABEL ARCHIVE. Adding and Configuring Active Directory Users in LABEL ARCHIVE

Browser-based Support Console

WHITE PAPER Citrix Secure Gateway Startup Guide

Install the Production Treasury Root Certificate (Vista / Win 7)

Exchange 2010 PKI Configuration Guide

How To - Implement Clientless Single Sign On Authentication in Single Active Directory Domain Controller Environment

Moving the Web Security Log Database

SCCM Client Checklist for Windows 7

System Area Management Software Tool Tip: Integrating into NetIQ AppManager

System Center 2012 R2 SP1 Configuration Manager & Microsoft Intune

Team Foundation Server 2010, Visual Studio Ultimate 2010, Team Build 2010, & Lab Management Beta 2 Installation Guide

Authentication in XenMobile 8.6 with a Focus on Client Certificate Authentication

This document describes the installation of the Web Server for Bosch Recording Station 8.10.

How to deploy fonts using Configuration Manager 2012 R2

How To Deploy Office 2016 With Office 2016 Deployment Tool

MICROSOFT STEP BY STEP INTERACTIVE VERSION 3.0 ADMINISTRATION GUIDE

Deploying Windows 7 Using SCCM 2012 R2

Lab A: Deploying and Managing Software by Using Group Policy Answer Key

Enable SSL for Apollo 2015

Deploying Remote Desktop Connection Broker with High Availability Step-by-Step Guide

Web based training for field technicians can be arranged by calling These Documents are required for a successful install:

etoken Enterprise For: SSL SSL with etoken

S/MIME on Good for Enterprise MS Online Certificate Status Protocol. Installation and Configuration Notes. Updated: October 08, 2014

Differences between Computer and User Templates

Step By Step Guide: Demonstrate DirectAccess in a Test Lab

Trial environment setup. Exchange Server Archiver - 3.0

SQL Server Setup for Assistant/Pro applications Compliance Information Systems

Moving the TRITON Reporting Databases

Using Device Discovery

Create, Link, or Edit a GPO with Active Directory Users and Computers

Outlook Web Access Guide to Installing Root Certificates, Generating CSR and Installing SSL Certificate

Optimization in a Secure Windows Environment

Installation and Configuration Guide

Symantec Managed PKI. Integration Guide for ActiveSync

How to install Small Business Server 2003 in an existing Active

Microsoft IIS 7 Guide to Installing Root Certificates, Generating CSR and Installing certificate

Centrify Cloud Connector Deployment Guide

Distributing SMS v2.0

IIS, FTP Server and Windows

4cast Client Specification and Installation

Entrust Managed Services PKI. Configuring secure LDAP with Domain Controller digital certificates

MailStore Outlook Add-in Deployment

Using LifeSize systems with Microsoft Office Communications Server Server Setup

ECA IIS Instructions. January 2005

System Administration and Log Management

Secure IIS Web Server with SSL

Using etoken for Securing s Using Outlook and Outlook Express

HELP DOCUMENTATION E-SSOM BACKUP AND RESTORE GUIDE

Parallels Mac Management for Microsoft SCCM

QUANTIFY INSTALLATION GUIDE

Installing and Configuring vcloud Connector

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

Reference and Troubleshooting: FTP, IIS, and Firewall Information

White Paper. Installation and Configuration of Fabasoft Folio IMAP Service. Fabasoft Folio 2015 Update Rollup 3

CA NetQoS Performance Center

Transcription:

In this post we will see the steps for deploying web server certificate for site systems that run IIS. This is one of the posts out of Deploy PKI Certificates for SCCM 2012 R2 Step by Step Guide. In my previous post we saw the PKI Certificate Requirements for SCCM 2012 R2 and understood much about PKI, the certificates required for SCCM if you are using PKI etc. The next step is to deploy web server certificate for the site systems. You can log in with a root domain administrator account or an enterprise domain administrator account and use this account for all procedures in this example deployment. Deploying Web Server Certificate for Site Systems that Run IIS Basically in this post we will be performing the following steps Creating and Issuing the Web Server Certificate Template on the Certification Authority Requesting the Web Server Certificate Configuring IIS to Use the Web Server Certificate This certificate is used to encrypt data and authenticate the server to clients. It must be installed externally from Configuration Manager on site systems servers that run IIS and that are configured in Configuration Manager to use HTTPS. Creating and Issuing the Web Server Certificate Template on the Certification Authority Create a security group named SCCM IIS Servers that contains the member servers to install System Center 2012 Configuration Manager site systems that will run IIS. On the member server that has Certificate Services installed, in the Certification Authority console, rightclick Certificate Templates and click Manage to load the Certificate Templates console.

In the results pane, right-click the entry that displays Web Server in the column Template Display Name, and then click Duplicate Template. In the Duplicate Template dialog box, ensure that Windows 2003 Server is selected, and then click OK.

In the Properties of New Template dialog box, on the General tab, enter a template name to generate the web certificates that will be used on Configuration Manager site systems. Click the Subject Name tab, and make sure that Supply in the request is selected.

Click the Security tab, and remove the Enroll permission from the security groups Domain Admins.

Also remove the Enroll permission from the security groups Enterprise Admins.

Click Add, enter SCCM IIS Servers in the text box, and then click OK. Select the Enroll permission for this group, and do not clear the Read permission. Click OK, and close the Certificate Templates Console.

In the Certification Authority console, right-click Certificate Templates, click New, and then click Certificate Template to Issue.

In the Enable Certificate Templates dialog box, select the new template that you have just created, SCCM Web Server Certificate, and then click OK.

Requesting the Web Server Certificate The steps that we perform now will install the web server certificate on to the member server that runs IIS. Microsoft recommends you to restart the member server that runs IIS. This is just to ensure that the computer can access the certificate template that you created. Run the mmc.exe command. In the empty console, click File, and then click Add/Remove Snap-in.In the Add or Remove Snap-ins dialog box, select Certificates from the list of Available snap-ins, and then click Add. In the Certificate snap-in dialog box, select Computer account, and then click Next. In the Select Computer dialog box, ensure Local computer: (the computer this console is running on) is selected, and then click Finish. In the Add or Remove Snap-ins dialog box, click OK. In the console, expand Certificates (Local Computer), and then click Personal. Right-click Certificates, click All Tasks, and then click Request New Certificate. On Select Certificate Enrollment Policy page, click Next.

On the Request Certificates page, identify the SCCM Web Server Certificate from the list of displayed certificates, and then click More information is required to enroll for this certificate. Click here to configure settings. In the Certificate Properties dialog box, in the Subject tab, do not make any changes to the Subject name. This means that the Value box for the Subject name section remains blank. Instead, from the Alternative name section, click the Type drop-down list, and then select DNS. In the Value box, specify the FQDN values that you will specify in the Configuration Manager site system properties, and then click OK to close the Certificate Properties dialog box.

On the Request Certificates page, select SCCM Web Server Certificate from the list of displayed certificates, and then click Enroll. On the Certificates Installation Results page, wait until the certificate is installed (the status should show Succeeded), and then click Finish.

Configuring IIS to Use the Web Server Certificate The steps that we perform now will configure IIS to use the web server certificate that we had configured in the above steps. On the member server that has IIS installed, launch the Internet Information Services (IIS) Manager. Expand Sites, right-click Default Web Site, and then select Edit Bindings.

In the Edit Site Binding dialog box, select the certificate that you requested by using the SCCM Web Server Certificates template, and then click OK. You have now configured IIS to use the web server certificate.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information