IIS Server Security - RE: How to create a client side certificate on a Windows 2000 Serv

This is Interesting: Free IT Magazines  
Home > Archive > IIS Server Security > March 2005 > RE: How to create a client side certificate on a Windows 2000 Serv





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author RE: How to create a client side certificate on a Windows 2000 Serv
WenJun Zhang[msft]

2005-03-21, 2:55 am

Hi Abel,

If the certificate you requested in step 2 does contain a 'You have a
private key that corresponds to this certificate.' message, then it's
not valid.

1) Install CA on a 2003 box and provide a CN.
2) On the 2003 box, go to http://localhost/certsrv/default.asp and
request a
Certificate.
3) On the BTS box, go to
http://[2003boxservername]/certsrv/default.asp
4) There are four links under "Select a task:". I click on the link
"Download a CA certificate, certificate chain, or CRL"
...

Since the certificate should be used by Biztalk box, the step 2)
should like:

2) On the BTS box, go to
http://[2003boxservername]/certsrv/default.asp and request a
Certificate.

You can choose to request a common 'Web Browser Certificate' since
the cert is used to identity the client(your Biztalk box) when
communicating with remote web server. Or choose 'submit an advanced
certificate request. ', the Type of Certificate should be 'Client
Authentication Certificate'. In Key Options, select 'Create new key
set'. Then submit this request and on the 2003 box, open Certificate
Authority snap-in to issue this cert.

After you finish these steps in 2) and get the certificate on your
Biztalk box, double-click the certificate and you should see the 'You
have a private key that corresponds to this certificate.' message.
Now it can be installed into Computer account's and Biztalk service
account's Personal store.

Please check the above points. If you still meet difficulty to get it
work, I think requesting a support incident is a good idea. Anyway
always let me know if you need any help. Thanks.

Best regards,

WenJun Zhang
Microsoft Online Partner Support

When responding to posts, please "Reply to Group" via your newsreader
so that others may learn and benefit from your issue.

========================================
=============

Business-Critical Phone Support (BCPS) provides you with technical
phone support at no charge during critical LAN outages or "business
down" situations. This benefit is available 24 hours a day, 7 days a
week to all Microsoft technology partners in the United States and
Canada.

This and other support options are available here:

BCPS:
https://partner.microsoft.com/US/te...rtoverview/4001
0469
Others:
https://partner.microsoft.com/US/te...upportoverview/

If you are outside the United States, please visit our International
Support page: http://support.microsoft.com/common/international.aspx

========================================
=============

This posting is provided "AS IS" with no warranties, and confers no
rights.

Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com