SSL Certificates

SSL Certs, SSL Certificate, SSL Certificates

Securing Your Online Business

Microsoft Internet Information Server 6.0 for Windows 2003 Support

It is highly recommended that you back up the Private Key for your Web Server and store the file in a secure location.

Backing up the Private Key will ensure the ability to restore the security for your Web Site in the event of a disaster.

The Certificates snap-in utility must be installed.

Snap-In Configuration
Use the following steps to create a new Microsoft Managment Console (MMC) and add the Certificates snap-in:

  1. Click Start, and then click Run.

  2. Type in "MMC" (without the quotation marks) and click OK.

  3. Click Console in the new MMC you created, and then click Add/Remove Snap-in.

  4. In the new window that appears, click Add.

  5. Highlight Certificates, and then click Add.

  6. Choose the Computer account option and click Next.

  7. Select Local Computer on the next screen, and then click Finish.

  8. Click Close, and then click OK.

Exporting your keypair (private and public keys):
From the MMC Console opened in the above steps:

  1. Expand the 'Certificates' tree in the left preview panel

  2. Expand the 'Personal' tree in the left preview panel and highlight 'Certificates'

  3. Select and Right-click your Entrust SSL Certificate from the right preview panel

  4. Select All Tasks/ Export - The Certificate Export Wizard appears

  5. Select Next to continue.

  6. Select Yes, to export the private key

  7. Select Next to continue.

  8. Ensure 'Enable Strong Protection' is checked, click Next

  9. Supply and confirm a password for your keypair back up.
    N.B. It is very important that you remember this password. If you forget it you will not be able to gain access to your Private Key.

  10. Supply a file name and location for your keypair back up. This will create a PFX file.
    N.B. Store your PFX keypair backup onto some form of removable media to ensure it is not lost.

  11. Select Next to continue.

  12. Select Finish.

  13. Select OK to complete the Export.

You have successfully backed up your keypair (private and public keys).

Importing your Private Key:
The Certificates snap-in utility must be installed. See Snap-In Configuration.

From the MMC console opened in the above steps:

  1. Expand the 'Certificates' tree in the left preview panel

  2. Right-click 'Personal'

  3. Select All Tasks/Import - The Certificate Import Wizard appears.

  4. Select Next to continue.

  5. Browse to, and Select your PFX keypair file.

  6. Select Next to continue.

  7. Supply the password which was provided during the creation of the PFX keypair file.
    N.B. Be sure the 'Mark the key as exportable' option is selected if you want to be able to export the key pair again from this computer. As an added security measure, you may want to leave this option unchecked to ensure that no one can make a backup of your private key.

  8. Select Next to continue.

  9. Select Next to continue.

  10. Select Finish.

  11. Select OK to complete the Import.

You have successfully imported your PFX keypair into the Windows certificate store.

To enable IIS 6.0 to use this certificate please follow the steps proceeding:

  1. Go into the properties of the site and choose the Directory Security tab

  2. Click on Server Certificate button under Secure Communication area.

  3. Choose the option "Assign an existing certificate"

  4. A pop up will appear with your Entrust SSL Certificate. Choose the Entrust SSL Certificate and finish the wizard.

  5. Make sure that SSL Port 443 is open on the firewall and within IIS 6 (default tab)

  6. Stop and Start the website.

SSL Secured Server

Entrust understands that before customers send sensitive information through the Internet, they first look for signs of assurance that their information does not end up in the wrong hands. That's why purchasing a SSL cert from Entrust effectively equips your web properties with the SSL security technology needed to give your clients peace of mind in knowing that their data is protected by robust encryption algorithms. Entrust provides websites with advanced SSL server certificates, including EV SSL certificates, to protect customer data, build consumer confidence, and protect your website's security reputation.

Entrust SSL solutions deliver powerful encryption in the form of the certificate https protocol in your website's URL - an indicator customers are trained to look for to determine if a secure SSL connection is actively protecting their information. Savvy website visitors also know to search for the tiny lock icon in their browser to verify if a certificate SSL is in use. Not providing your visitors with these critical beacons of secure computing can make the difference between gaining a customer a losing one. Entrust recognizes that in the competitive marketplace of the Internet, a website must deploy SSL security to successfully attract and retain consumers.

In addition to playing a major role in securing transactions over the World Wide Web, Entrust offers powerful network security solutions for website administrators. Learn more about purchasing Entrust SSL certificates or other SSL server encryption products and services to understand why Entrust network security solutions have been the choice for website administrators and e-commerce sites for over a decade.