SSL Certs, SSL Certificate, SSL CertificatesSSL Certificates

Securing Your Online Business

Microsoft Internet Information Server 6.0 for Windows 2003 Support

During the online enrollment process you will be required to provide Entrust Certificate Services with a Certificate Signing Request (CSR).

This encrypted data is generated from your Windows 2003 server, and contains information about your company and Web server.

It is important to review this guideline, as Entrust Certificate Services will use this information to generate your certificate.

To generate your Key Pair and Certificate Signing Request (CSR):

  1. Launch the Internet Services Manager
       Select Start /Programs/ Administrative Tools/ Internet Services Manager

  2. Select and right-click your Web site from the left preview pane. Select Properties.

  3. Select Server Certificate from the Secure Communications menu.

  4. The Web Server Certificate Wizard appears. Select Next.

  5. Select Next again to continue.

  6. Select Create a new certificate. Select Next.

  7. Select Prepare the request now, but send it later. Select Next.

  8. Supply a friendly name for your certificate. Select a bit length value for your new Private Key. It is recommended that you choose a 1024-bit key if that option is available. Select Next.

  9. Supply the name of your company or organization in the field provided. This information should reflect the name of your company or organization as stated in your Proof of Right documentation. This organization must own the domain name that appears in Common Name (CN) of your Web server.
    Do not use the following characters in any of the fields in the Create New Key Wizard: > < ! @ # $ % ^ * ( ) ~ ? / \.

    If relevant, supply the name of your division or department in the Organizational Unit field provided. Select Next

  10. Supply the Common Name (CN) of your web server in the field provided. This name must be identical to the fully qualified domain name of the web site for which you are requesting a certificate. Such as www.entrust.com

    If the Web server name does not match the common name in the certificate, some browsers will refuse to establish a secure connection with your site.

    Do not specify the protocol (http://), any port numbers or pathnames in the Common Name (CN).

    Do not use wildcards such as * or ?.

    Select Next.

  11. Select your Country from the available pull-down menu. Supply your State/Province information in the field provided.

    Do not use abbreviations in any of the fields. Supply your City/Locality in the field provided.

    Select Next.

  12. Supply a File name for your Certificate Signing Request (CSR). Select Next.

  13. Review the Request File Summary. Select Next.

  14. Select Finish to complete the Web Server Certificate Wizard.

  15. Select OK to close the Properties page.