Outlook Web Access
(CSR Generation
Procedures) |
|
 |
 |
Using the Internet Services Manager.
Right
click on the website that is hosting your OWA component (this
is by default the " Default Web Site ") and open
its properties.
Select
the " Directory Security " tab and then click on " Server
Certificates ". The " Web Server Certificates Wizard " will
now be displayed, click Next.
On
the " Server Certificate " dialogue box (below), we are
going to select " Create
a new certificate ", click Next.
In
the " Delayed or Immediate Request " dialogue box (below)
select " Prepare the request now, but send it later ", click
Next.
Next
you are presented with the " Name and Security Settings " dialogue
box (below). Give your new certificate a name and also select
the level of security you would like to use (it is not recommended
that you go over 1024 as this will have an adverse effect on
your server performance), click Next.
In
the " Organization Information " dialogue box (below), enter
the name of your organization. This should be as you want it
to appear on any legal documents as this is the name that will
appear in your certificate. The organizational unit can be
a location, department or business unit within your company.
In
the " Common Name " dialogue box (below), you must
enter the FQDN of our web server.
| If you are ordering a Wildcard Certificate,
the Common Name field must be in the format of: *
. yourdomain . com |
You
are now presented with the "Geographical Information" dialogue
box (below). It is important to make sure you enter the State
in full, for example "New York" not just "NY". Abbreviating
State names will be rejected at the end of the Certificate
Wizard.
The last step is to specify the location of the Certificate
Request File, remember where and what you called this as you
will need it later.
The " Request File Summary " will
now appear (below). Make sure everything is OK and then click
Next to process the request.
-----BEGIN CERTIFICATE REQUEST-----
UbM77e50M63v1Z2A/5O5MA0GCSqGSIb3DQEOBAU
AMF8xCzAJBgNVBAYTAlVTMSAwHgYDVQQKExdSU0
EgRGF0YSBTZWN1cml0eSwgSW5jLjEuMCwGA1UEC
xMlU2VjdXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9u
IEF1dGhvcml0eTAeFw0wMTA4MDIwMDAwMDBaFw0
wMzA4MDIyMzU5NTlaMIGQMQswCQYDVQQGEwJVUz
ERMA8GA1UECBMIVmlyZ2luaWExETAPBgNVBAcUC
FJpY2htb25kMSAwHgYDVQQKFBdDYXZhbGllciBU
ZWxlcGhvYm9uZGluZy5jYXZ0ZWwuY29tMIGfMA0
GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8x/1dxo
2YnblilQLmpiEziOqb7ArVfI1ymXo/MKcbKjnY2
-----END CERTIFICATE REQUEST----- 
When sending your CSR to EBIZID, you
MUST copy and paste the entire CSR Request, including the
beginning and ending lines as shown below.
-----BEGIN CERTIFICATE REQUEST-----
-----END CERTIFICATE REQUEST-----
Failure to do so will result in you having to resend your
CSR in the correct format to EBIZID which will cause a
prolonged delay in processing your order. |
| Backup the private key, as there is
no means to recover it should it be lost. The private key
is used as input in the command to generate a Certificate
Signing Request (CSR). EBIZID will reissue certificates
no more than 30 days from the time of purchase. If you
do not backup your key and your server fails or other problems
occur after the 30 days, you will then be required to purchase
a new certificate. An ounce of prevention is all that is
required to prevent this from happening. |
| Should you choose to enter and use a
Private Key password, you will need to make sure that you
save that password in a secure place. If you ever need
to reinstall your certificate for any reason, you will
be required to enter that password. If you forget the password
and it is past 30 days from your purchase date, then you
will be required to purchase a new certificate. An ounce
of prevention will prevent this from happening. |
|
