How to buy a SSL certificate?

Discussion in 'Security Software' started by John, Nov 21, 2006.

  1. John

    John Guest

    I need a simple SSL certificate only for TS and our few RDP 5.2 clients.
    Nothing to do with WWW or browsers. Can someone point me in the right
    direction how to buy one of these? Hoping to keep it easy on remote
    clients, hence the 3rd party CA.

    Would the $19 offering from GoDaddy work? or the GeoTrust QuickSSL $189.
    I'm a little confused by these since they all see targeted for browsers...
     
    John, Nov 21, 2006
    #1
    1. Advertisements

  2. John

    S. Pidgorny Guest

    Yes GoDaddy certificate should do - from what I see, the certificate is
    exactly the same as Web server SSL certificate, including the installation
    procedure.
     
    S. Pidgorny, Nov 21, 2006
    #2
    1. Advertisements

  3. John

    John Guest

    I bought one from GoDaddy.
    I'm fairly sure I set everthing up properly, CSR via IIS 6.0, added the Cert
    to "Personal" under the TS Computer Account MMC.

    But it still does not appear on List, please see this print screen:
    http://www.reamsoftware.com/TSCertificateScreen.jpg

    I read under the TS MS Docs that I need a SSL-compatiable X.509 certificate?
    Maybe the GoDaddy certs are not this flavor. I'm at a loss...
     
    John, Nov 21, 2006
    #3
  4. John

    S. Pidgorny Guest

    Last time I had similar issue with IAS - resolved by using certain CSP
    (namely, Microsoft RSA Schannel) during enrollment. Other issue can be wrong
    store or, maybe, name should be the FQDN of the server?

    But first make sure you can actually use the cert for SSL.
     
    S. Pidgorny, Nov 22, 2006
    #4
  5. John

    John Guest

    SOLUTION for: How to Install Win2K3 Terminal Server SSL Certificate

    Short Answer to reply/close to various posts I made:

    - Do not Install Windows Server 2003 Certificate Services.
    - Produce a CSR (Certificate Signing Request) on any available IIS6 box, any
    website. Yes CSP, select MS RSA
    - In CSR be sure to specify your FQDN intented for use by remote RDC
    Users, same as RDC “Server� text box.
    - My FQDN is a Registered Whois Domain with resolves to IP like any other
    Domain.
    - Buy a SSL Certificate from any CA. Apply your CSR at CA. Get CRT files,
    two in my case, Web Cert & Intermediate Certificate.
    - Apply CRTs to IIS6 Box, ICert to MMC and WCert to IIS6.
    - Export Certificate from IIS6 Website as .PFX file, remove CRTs from IIS6
    Box.
    - Apply both CRTs to TS Box via MMC.
    - TS Configuration will should now properly see your SSL Certificate.
     
    John, Nov 23, 2006
    #5
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.