• Article

3.7 Configure the Web Components Server IIS Certificate

Microsoft Office Communications Server 2007 and Microsoft Office Communications Server 2007 R2 will reach end of support on January 9, 2018. To stay supported, you will need to upgrade. For more information, see Resources to help you upgrade your Office 2007 servers and clients.

As explained earlier, you must use Internet Information Services (IIS) to configure the certificate for the Web Components Server. Use the appropriate procedure for your topology.

  • Configure the Web Components Server certificate for a server in the consolidated pool configuration.

  • Configure the Web Components Server certificate for a server in the expanded pool configuration.

Configuring the Web Component Certificate in a Consolidate Pool Configuration

If you deployed a pool in the consolidate configuration and the internal Web farm FQDN matches the pool FQDN, use the following procedure to assign the certificate. If your internal Web farm FQDN does not match the pool FQDN, use the procedures in the next section to request and configure the certificate.

Assign the certificate to the Web Components Server by using the IIS Manager. You must perform this procedure on Enterprise Edition Servers in a consolidated pool configuration.

To assign the certificate to the Web Components Server using IIS Manager

  1. Log on to the server running the Web Components Server as a member of the Administrators group.

  2. Click Start, click Control Panel, click Administrative Tools, and then click Computer Management.

  3. Expand the Services and Applications node, and then expand the Internet Information Services (IIS) Manager node.

  4. Expand the Web Sites node, right-click Default Web Site, and then click Properties.

  5. Click the Directory Security tab.

  6. Under Secure communications, click Server Certificate.

  7. On the Welcome to the Web Server Certificate Wizard page, click Next.

  8. Click Assign an existing certificate, and then click Next.

  9. Select the certificate that you requested by using the Certificates Wizard for your other server roles, and then click Next.

    Note

    If your internal Web farm FQDN is different from your pool FQDN, then you must first request a certificate.

  10. On the SSL Port page, verify that port 443 will be used for SSL, and then click Next.

  11. Review the certificate details, and then click Next to assign the certificate.

  12. Click Finish to exit.

  13. Click OK to close the Default Web Site Properties page.

Configuring the Web Component Certificate in a Expanded Pool Configuration

If you are using a pool in the expanded configuration, you must use the IIS certificate wizard to request and assign the certificate for the Web Components Server.

Request a new certificate for the Web Components Server with Internet Information Services (IIS) Manager. You must perform this procedure on all Web Components Servers in your pool. When you run the certificate wizard and create a new certificate request, it automatically installs it on your computer.

To create and assign a certificate for the Web Components Server using IIS Manager

  1. Log on to the server running the Web Components Server as a member of the Administrators group.

  2. Click Start, click Control Panel, click Administrative Tools, and then click Computer Management.

  3. Expand the Services and Applications node, and then expand the Internet Information Services (IIS) Manager node.

  4. Expand the Web Sites node, right-click Default Web Site, and then click Properties.

  5. Click the Directory Security tab.

  6. Under Secure communications, click Server Certificate.

  7. On the Welcome to the Web Server Certificate Wizard page, click Next.

  8. Click Create a new certificate, and then click Next.

  9. On the Delayed or Immediate Request Page, click Send the request immediately to an online certificate authority, and then click Next.

    Note

    If you are using a public CA, you can select the option to prepare the request and then send it later.

  10. On the Name and Security Settings page, type a meaningful name for the certificate, select a bit length for the certificate, and then click Next.

  11. On the Organization Information page, type or select the name of your organization and organizational unit, and then click Next.

  12. On the Your Site’s Common Name page, type the fully qualified name of the internal Web farm, and then click Next.

  13. On the Geographical Information page, enter the Country/Region, State/Province and City/Locality. Do not use abbreviations. When you are finished, click Next.

  14. On the SSL port page, accept the default port 443, and then click Next.

  15. On the Choose a Certification Authority page, click your certification authority (CA) in the list, and then click Next.

  16. On the Certificate Request Submission page, review the settings that you specified and then click Next.

  17. Click Finish.