Skip to main content

steps used for certificate request and configuring a web server for SSL (HTTPS)

These are the standard steps used for certificate request and configuring a web server for SSL (HTTPS)


Request a certificate for a web server
Before you can use SSL, you have to first install a certificate on your IIS web server.
·         In IIS, right-click on the site you want to secure
·         Select Properties
·         On the Directory Security tab, click Server Certificate
·         Click Next and select Create A New Certificate
·         Select Prepare The Request Now, But Send It Later and click Next
·         Type a name for the certificate and bit length, and then click Next.
·         Type your organizational name and organizational unit in the box provided and click Next.
·         Enter your Web server name and click Next.
·         In the next dialog box, provide some geographical information and click Next.
·         Enter the location and the name for the certification request, then click Next.
·         Verify the information and click Next, and then click Finish.


If you use Microsoft's CA server, use these steps to issue the certificate.
·         Open Internet Explorer and type "CAserverName/certsrv"  
·         Select Request A Certificate and click Next
·         Select Advanced Request and click Next
·         Select Submit A Certificate Request Using A Base64 Encoded PKCS #10 File or A Renewal Request Using A Base64 Encoded PKCS #7 File and then click Next.
·         Open the certificate request file you created previously, copy and paste its contents into the form provided, and click Submit.
Below is Optional and required only if manual issuance is required on the certificate template. Not apply in our case and we will be prompted to download our certificate and the certificate chain after the last step above.
Accept the request and issue the certificate
·         In the Administrative Tool folder, open the Certification Authority console, and select Pending Requests
·         Right-click the pending certificate, select All Tasks, and select Issue
Retrieve the certificate from your CA server
·         In IE type "CAserverName/certsrv"
·         Select Check On A Pending Certificate, and click Next.
·         Select the certificate and click Next
·         Select DER Encoded, and click Download CA Certificate
·         Select a folder in which to store the certificate, and click Save
Import the certificate into IIS
·         Go back to the Internet Services Manager console
·         Right-click the site and select Properties
·         In the Directory Security tab, click Server Certificate
·         Select Process The Pending Request And Install The Certificate and click Next.
·         Type the path to the CA response file you saved and click Next
·         Verify the information and click Next, and then click Finish.
Enable SSL
·         Click Edit, select Require Secure Channel (SSL).
·         For additional security select Require 128-bit Encryption
·         Click OK and close all dialog boxes.


Labels:

Popular posts from this blog

Debugging code running on Remote machine

Before performing below steps, you need to make sure you have pdb files matching dll version on the remote machine.  Open below folder in your remote machine C:\Program Files (x86)\Microsoft Visual Studio\2017\Enterprise\Common7\IDE\Remote Debugger\x64  Open that folder and launch as admin  msvsmon.exe  Select all options to allow firewall From Tools > Options  - Keep the settings to default (as shown below) and click ok.  At this point your remote debugger is all set. You need to connect from Visual Studio by entering Machine IP: Port (4022) 
Read more

Using IsInRole() with Forms Authentication

A Little background…. Page object provides User [ System.Security.Principal.IPrincipa l ] in order to access to the information about the current authenticated user. User is having following two important members. These members provide way to implement Role-based authorization programmatically. Identity [Property] [ System.Security.Principal.IPrincipal.Identity ] – This property provides important members like AuthenticationType, IsAuthenticated, Name. IsInRole [Method] [ System.Security.Principal . IPrincipa l ] – This method takes single parameter that is string value of Role for which to check the membership.
Read more

SharePoint yammer integration error: System.Exception: Unable to load the web part. IsEdit: False, IsAsync: False, FormMode: Invalid, SharedProperties: {"site_url":"http:// ","service_account":"true","webpart_guid":" ","iframe":"true","version":" "} at Yammer.SharePoint.WebParts.YammerAppsWebPart.CreateChildControls()

Hi there,  if you are searching for below error ..  System.Exception: Unable to load the web part. IsEdit: False, IsAsync: False, FormMode: Invalid, SharedProperties: {"site_url":"http:// ","service_account":"true","webpart_guid":" ","iframe":"true","version":" "} at Yammer.SharePoint.WebParts.YammerAppsWebPart.CreateChildControls()  The solution you can try could be disabling uploading file attachments to yammer. Below are the steps: 1.Select your webapplication from CA > Manage web apps 2.On the Ribbon>Yammer>Yammer Settings 3.Deselect 'Enable uploading file attachments to Yammer' 4.Click 'Save Settings'. And you are done! You can now add yammer web part to page and can check again.
Read more