Skip to main content

steps used for certificate request and configuring a web server for SSL (HTTPS)

These are the standard steps used for certificate request and configuring a web server for SSL (HTTPS)


Request a certificate for a web server
Before you can use SSL, you have to first install a certificate on your IIS web server.
·         In IIS, right-click on the site you want to secure
·         Select Properties
·         On the Directory Security tab, click Server Certificate
·         Click Next and select Create A New Certificate
·         Select Prepare The Request Now, But Send It Later and click Next
·         Type a name for the certificate and bit length, and then click Next.
·         Type your organizational name and organizational unit in the box provided and click Next.
·         Enter your Web server name and click Next.
·         In the next dialog box, provide some geographical information and click Next.
·         Enter the location and the name for the certification request, then click Next.
·         Verify the information and click Next, and then click Finish.


If you use Microsoft's CA server, use these steps to issue the certificate.
·         Open Internet Explorer and type "CAserverName/certsrv"  
·         Select Request A Certificate and click Next
·         Select Advanced Request and click Next
·         Select Submit A Certificate Request Using A Base64 Encoded PKCS #10 File or A Renewal Request Using A Base64 Encoded PKCS #7 File and then click Next.
·         Open the certificate request file you created previously, copy and paste its contents into the form provided, and click Submit.
Below is Optional and required only if manual issuance is required on the certificate template. Not apply in our case and we will be prompted to download our certificate and the certificate chain after the last step above.
Accept the request and issue the certificate
·         In the Administrative Tool folder, open the Certification Authority console, and select Pending Requests
·         Right-click the pending certificate, select All Tasks, and select Issue
Retrieve the certificate from your CA server
·         In IE type "CAserverName/certsrv"
·         Select Check On A Pending Certificate, and click Next.
·         Select the certificate and click Next
·         Select DER Encoded, and click Download CA Certificate
·         Select a folder in which to store the certificate, and click Save
Import the certificate into IIS
·         Go back to the Internet Services Manager console
·         Right-click the site and select Properties
·         In the Directory Security tab, click Server Certificate
·         Select Process The Pending Request And Install The Certificate and click Next.
·         Type the path to the CA response file you saved and click Next
·         Verify the information and click Next, and then click Finish.
Enable SSL
·         Click Edit, select Require Secure Channel (SSL).
·         For additional security select Require 128-bit Encryption
·         Click OK and close all dialog boxes.


Labels:

Popular posts from this blog

Remote debugging Windows azure cloud service - Worker Role

Remote debugging Windows azure cloud service - Worker Role Very recently I was working on design and development of a worker role component of cloud service. Locally debugging worker role is pretty easy. You just need to know that you need to set Cloud project as a start-up project and ready to go. Problem is when you deploy worker role to azure and trying to troubleshoot an unknown issue.  Thankfully we have remote debugging enable for cloud services – both web and worker roles. This is really handy tool to remotely debug without having to putting a lot of tracing and digging into it. However, remote debugging in worker role/web role requires few steps to be followed: Make sure you are debugging from same machine where you published Make sure to turn on Remote debugger on while you publish (This should be turned off for Production publish profiles) Make sure to Select Debug mode With all the above settings after you publish, you should be able to Attach D
Read more

Differences between Object Serialization and Deserialization?

Serialization = putting the relevant state of the object into a streamable representation. That can mean converting it to a byte stream. This does not necessarily include copying every member variable into the stream. Deserialization = restoring an object from a serial representation and ensuring the invariants of the object. Deserialization can be thought of a separate constructor for the object.
Read more

Web-API - RESTful Services on Microsoft .net for building Ubiquitous web world

It's been very interesting to note about the fantastic things happening in the world of web development. Finally, we got the solid framework for building RESTful services on Microsoft platform. Let's have a very  quick look at the basic detail. REST [Representation State Transfer Protocol]           A representation is a opaque string of bytes that is effectively manifestation of a resource. REST was never about pretty URLs. The whole point of the hypermedia is that client should not need to know how to construct these URLs in the first place. For your clients, they are just STRINGS.           Web-API can be used when you have clients which consumes data from server over HTTP. Now a days, lot of browser applications are rich clients with web server returns some static html and then may be it uses client side framework like jquery, backbonejs or knockoutjs and makes calls back to server to pull data to execute some client-side functionality. Web-API's role is not j
Read more