Obtaining and Installing a Server Certificate
You must obtain your server certificate from a certificate authority (CA). Use a private CA, such as Windows 2000 Server Certificate Services or for links to some well-known CAs, see the Related Topics links at the end of this topic.
MCS can use certificates in either .der or .pem format. A .der format file contains binary data. A .pem format file (privacy-enhanced mail) is in ASCII, beginning with this line:
-----BEGIN CERTIFICATE-----
and ending with this line:
-----END CERTIFICATE-----
The filename extension must match the contents of the certificate file.
| To obtain and install a server certificate on an MCS server or server cluster |
- Create a certificate request for a server certificate and submit the request to a certificate authority (CA).
- When you receive your server certificate, copy the files to an accessible location.
- In the MCS left pane, point to Services and then click Security.
- In the Security tree, click Security Services.
The Security Services General page appears in the right pane of the MCS window.
- In the Security Services Configuration page, to navigate to the location to which you copied your certificate files, choose Install.
- In the Open dialog box, navigate to the location where you placed your certificate files.
- Select a certificate file and choose OK.
The Choose Private Key dialog box is displayed.
- Select a private key and choose OK.
After installation, your certificate is displayed in the Security Services Configuration page under Site Certificate.
- To add the CA certificate for your server certificate, choose Add.
Certificate authorities contained in the CA certificate are displayed under Trusted Certificate Authorities.
- Choose Save.
|
