Creating an SSL certificate

Hello all

I setup a windows 2008 enterprise Certificate Authority in a domain call RXS. I also have a webserver that is not connected to the domain

I currently have users able to connect to the web server using a URL

I now want to add an SSL cert to the URL using my Enterprise Certificate Auth.

I tried several methods but unsuccessful

Please help (This is for test purposes so please I know about using verisign etc)

thanks
FalconTwoAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Daniel HelgenbergerCommented:
I do not know if this is the supposed way, but it works for me:
Install IIS with management tools on any domain joined machine.
Use IIS admin and select your server. Locate SSL Certificates. There, choose "Create Domain Certificate" from the right tab. Set everything to your needs, selecting your Domain CA in the process.
Once this is done, the new certificate will be listed there. Right click it, choose export. This way a PCS#12 PFX will be exported, complete with certificate and private key. Using openssl / or a web service convert it to the format needed.

Another way would be to use for instance easyRSA with an Intermediate signing authority. Create an intermediate CA signing request and complete it with your domain (see above). Export it and convert it for easyRSA. This way you can now sign certificates with easyRSA.

You also can export your CA of course (you do this with "backup CA") - using it with easyRSA. But I think the Intermediate CA way is cleaner.
https://www.sslshopper.com/ssl-converter.html
https://github.com/OpenVPN/easy-rsa/tree/master/easy-rsa/Windows
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
SSL / HTTPS

From novice to tech pro — start learning today.