Index

» Home

» OCS Deployment

» Front End Server

» Edge Server

» Web Conferencing Server

» Archiving Server

» Certificates

» Communicator Web Access

» A/V Server

» VOIP 'N' Mediation

» Group Chat Server

» Migration

» Exchange UM

» OCS Issues

» OCS Disaster Recovery

» Miscellaneous
Steps to create the external interface certificate request for an Access Edge Server

Followings are the steps to generate an external interface certificate for an Access Edge Server 

On the Delayed or Immediate Request page, select the Prepare the request now, but send later check box, and then click Next.

On the Name and Security Settings page, type a friendly name for the certificate, specify the bit length (typically, the default of 1024), select the Mark certificate as exportable check box, and then click Next.

On the Organization Information page, type the name for the organization and the organizational unit (such as a division or department, if appropriate), and then click Next.

On the Your Server’s Subject Name page, type or select the subject name and subject alternate name of the edge server:

    The subject name should match the FQDN of the server published by the external firewall for the external interface on which you are configuring the certificate. For the external interface of the Access Edge Server, this certificate subject name should be sip.<domain>.

    If multiple SIP domain names exist and they do not appear in Subject alternate name, type the name of each additional SIP domain as sip.<domain>, separating names with a comma. Domains entered during configuration of the Access Edge Server are automatically added to this box.

Click Next.

On the Geographical Information page, type the location information, and then click Next.

On the Certificate Request File Name page, type the full path and file name of the file to which the request is to be saved (or click Browse to locate and select the file), and then click Next.

On the Request Summary page, click Next.

On the Certificate Wizard Completed page, verify successful completion, and then click Finish.

Copy the output file to a location from which it can be submitted to the public CA

To submit a request to a public certification authority

Open the output file.

Copy and paste the contents of the CSR into the appropriate text box beginning with:

-----BEGIN NEW CERTIFICATE REQUEST-----

And ending with:-

----END NEW CERTIFICATE REQUEST

If prompted, select the following options:

·         Microsoft as the server platform

·         IIS as the version

·         Web Server as the usage type

·         PKCS7 as the response format

When the public CA has verified your information, you will receive an e-mail message containing text required for your certificate.

Copy the text from the e-mail message and save the contents in a text file (.txt) on your local computer.

Download the root CA chain of the public CA and install it on the local computer store of each edge server

 

 
OCS Made Easy!
 
Copyright, OCSpedia.com. Microsoft, MS-DOS, Windows, Windows 2000, Windows XP, Windows Server 2003, Windows NT, Windows 98, Windows 95 are either registered trademarks or trademarks of Microsoft Corporation in the U.S.A. and other countries. All other names are registered trademarks of their respective companies. Should any right be ran afoul, it is totally unintentional. Send us an e-mail and we will promptly and gladly rectify it. All external sites will open in a new browser. Ocspedia.com does not endorse external sites and is not responsible for their content. For broken links, site problems or any feedback - please send an email at uc@ocspedia.com.