We are now going to prepare an installation of a trusted certificate from a service provider.The reason you would install a trusted certificate is you don’t have to install the self-signed certificate on all devices that are used for remote connections, owa, activesync, outlook anywhere, remote web workplace, etc.In order for any certificate to be validated, all of the certificates in its chain have to be validated.To illustrate this real world, let’s look at how a SSL certificate chain is verified.Now click on the Wireless Networks tab and select the network in the list at the bottom.
You now have to enter some information, all fields are required.
or any device, So that you can over come outlook errors First we will learn how to Export a Certificate request file from Exchange 2013, Step 1: Login to Exchange Administration Center (EAC) in Exchange 2013 Servers – Certificates – Click on the “ ” Sign – New Choose “Create a request for a Certificate from the Certification authority” Next Type a Friendly Name : Wild Card is used if you are going to manage more URLs . Choose the Server to have the Cert Request Step 2: Enter the Required URL’s for your Exchange , For Example Am entering only for Outlook Web App (When accessed from the internet) Step 3: You will see the collection for URL’s Step 4: Fill out the Form Create a Simple Share to Save the Cert Request Save the Cert Request to a Shared Location as below Now you could see the Pending Cert Request Step 5: Your request file would look like this Exchange is the request file you created.
Now right click on the file , Open with , Use notepad Opening it via Notepad , It would give a set of Request content, You will use this content in the later part Step 6: You need to have this role installed to have a Certificate Authority , It can be DC or Exchange it self I have done this in the Exchange itself (No Harm) Step 7: Choose : Active Directory Certificate Services Choose Next And Choose : Certification Authority Web Enrollment Choose : Certification Authority Web Enrollment Choose Install Choose Close Step 8: To Configure Active Directory Certificate Services Choose the Exclamation Mark on the Flag Choose Next Choose Certificate Authority & Certification Authority Web Enrollment Choose Enterprise Step 9: Choose Root CA Step 10: Create a new Private key Step 11: Have this Default with 2048 key Character length Step 12: Click Next Step 13: By Default Certificate is valid for 5 years , Don’t make any changes on it , Click next Step 14: Step 15: Now if you Open IIS manager , you will see “Cert Srv” a Virtual Directory Created , Use the right side column “Browse *.443(https) Step 16: You would see a page like this , Choose Request a Certificate Step 17: Click on Advanced Certificate Request Step 18: Choose the Second one Submit a certificate request by using a base-64-Encoded CMC Step 19: Now Copied the content from the Note pad – (See Step5) Choose Template : Web Server Step 20: Choose “Base 64 encoded” Step 21: Save the Certificate Copied the File to a Common Share Step 22: Now go to your EAC – Servers – Certificates- Choose the Pending Request – Choose Complete Step 23: Now Assign Services to the Certificate Choose Cert and Click on Edit Now the Server Part is ready Step 24: Now will learn how to install the Certificate in the Client End Double Click on the Certificate Click Install Certificate – Click Next – Choose Local Machine Choose Personal – Click Next And Import will be Successful Now Do the Same Process Double Click on the Certificate Click Install Certificate – Click Next – Choose Trusted Root Certification Authorities Double Click on the Certificate Click Install Certificate – Click Next – Choose Intermediate Certification Authorities Step 25: Before After installing the Certificate in the Client Great !!
I'm working on a script that will create a certificate request file (.inf), take that request file and turn it into a binary, and then submit to a CA.
How would I go about submitting the a certificate request via the command line?