IIS internal website security certificate

Hi!
We have an internal website that needs https connection.  Each time we open the website, we have a warning the there is a problem with this wensite's security certificate.

How can I remove this warning for internal web site or can I create a self signed certificate and deploy with GPO?  Is there an easier solution?

Thanks!

JS
polycorjspAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Patrick BogersDatacenter platform engineer LindowsCommented:
Yes you can create a self signed certificate and deploy to your users using a GPO.

No it cannot be easier IF your website really needs https.
0
Giovanni HewardCommented:
It's easier if you purchase and install a certificate from a certificate authority (CA) already trusted in each users certificate store-- such as VeriSign, Thawte, Entrust, DigiCert, etc.

Run certmgr.msc and look under Trusted Root Certification Authorities > Certificates and Intermediate Certification Authorities > Certificates

Inherently Trusted CA's
0
polycorjspAuthor Commented:
Hi!

If I use the server address, I do not have the problem (https://srv2k8x64r2-hirs.mydomain.Local).  I have created a more user firendly DNS entry like https://HRExpert.mydomain.local that point to the same IP and the certificate warning appears.  Is there a quick solution?

Thanks!

JS
0
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

Patrick BogersDatacenter platform engineer LindowsCommented:
Thats probably because the certificate in place is for srv2k8x64r2-hirs.mydomain.Local
0
Giovanni HewardCommented:
Looks like you'll need SelfSSL or SelfSSL7 to generate more than one CN.

Example
SELFSSL7.EXE /N cn=srv2k8x64r2-hirs;cn=srv2k8x64r2-hirs.mydomain.Local;cn=HRExpert;cn=HRExpert.mydomain.local ... etc.

I doesn't get much easier than that--- unless you want to pay someone else to do it. :)
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
polycorjspAuthor Commented:
Sorry for the delay; I will try that shortly
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft IIS Web Server

From novice to tech pro — start learning today.