Help issuing SSL for domain server application using windows ca.

Question

On one of our domain servers there is a patient coding application accessed via web interface http://<servername>.<example>.local/ The application is accessed by computers within our domain. I have been tasked to issue an SSL cert that will make the web interface https://<servername>.<example>.local/ To accomplish this I created a Windows CA server, then utilized command line certreq to have the cert. issued. The cert issued has my common name instead of the common name of the server. I have exactly zero experience with Windows AD CS. Can anyone help?

Answer 1

Hello there,

To issue an SSL certificate for your domain server application using a Windows CA, you will need to follow these steps:

1. On the Windows CA server, open the Certificate Authority console.
2. In the console tree, click the certificate template that you want to use to issue the certificate.
3. In the details pane, click Duplicate Template.
4. In the Properties dialog box, click the General tab, and then type a name for the new template in the Template display name box.
5. Click the Security tab, and then click Add.
6. In the Select Users, Computers, or Groups dialog box, type the name of the user or group that you want to grant permissions to, and then click OK.
7. In the Permissions for <Template Name> dialog box, under Allow, select the Read and Enroll check boxes, and then click OK.
8. Close the Properties dialog box.
9. In the Certificate Authority console, in the console tree, click Certificate Templates.
10. In the details pane, right-click the new template, and then click New > Certificate to start the Certificate Enrollment Wizard.
11. Follow the prompts in the wizard to request and issue the certificate.

After the certificate has been issued, you can use it to enable HTTPS for your domain server application. --If the reply is helpful, please Upvote and Accept it as an answer–