1. Open the notepad and copy and paste the configuration lines below and replace some parameters below accordance with your own company information. Such as: CN etc.
Save the following file as request.inf on your server editing the subject according to the comment:
;----------------- request.inf -----------------
[Version]
Signature="$Windows NT$"
[NewRequest]
;Change to your,country code, company name and common name
Subject = "C=US, O=Example Co, CN=something.example.com"
KeySpec = 1
KeyLength = 2048
Exportable = TRUE
MachineKeySet = TRUE
SMIME = False
PrivateKeyArchive = FALSE
UserProtected = FALSE
UseExistingKeySet = FALSE
ProviderName = "Microsoft RSA SChannel Cryptographic Provider"
ProviderType = 12
RequestType = PKCS10
KeyUsage = 0xa0
[EnhancedKeyUsageExtension]
OID=1.3.6.1.5.5.7.3.1 ; this is for Server Authentication / Token Signing
;-----------------------------------------------
2. Open command prompt and make sure you have the full admin rights on the server to do this step:
C:\>certreq -new request.inf request.csr
3. Open the request.csr using notepad and copy the contents to your order screen or on your CMS portal.
Installing Certificate: When your certificate is issued you'll typically receive a file called entrustcert.crt, Save it on the server and from the same directory run:
C:\>certreq -accept store_acmesafe_com.cer
This will install the cert in the Windows certificate store and it will be available in IIS , MMC , Exchange , LDAP/Active Directory , Terminal Services and those products that make use of the Windows certificate store.
For more information, please visit:
http://support.microsoft.com/kb/321051
Hours of Operation:
|