Objective: Create and certify a certificate to enable SSL encryption.
Exercise scoring
This exercise is auto-scored. There is nothing to submit to your tutor.
Instructions
This installment of the course project simulates the process required to generate a signed certificate. This certificate will allow SSL encryption
on data passing between the Web server and the Web browser. If, for example, you wished to do this for the English-collectors.com site, you could
generate a certificate, then have it signed by VeriSign, and then install it.
In the simulation below, you will take the necessary steps for generating a key pair and then getting your public key signed by a CA. After your
key is signed, you will then install your public key to enable IIS to provide SSL-encrypted sessions.
- First, you must generate a key (i.e., unsigned certificate). You do this using the Key Manager, found in the Microsoft Management Console (MMC) shown here. This console allows you to administer IIS 5.0, among other services and applications. From the MMC, select the Key Manager icon on the toolbar. It resembles a hand holding a key.
- key_manager
- The key manager is now open. Normally, you would right-click on WWW icon, but for the purposes of this simulation, simply click on it.
- You are now seeing the first of several dialog boxes that will help you create your key. In this dialog box, you now have two options. For this simulation, you will send your key to VeriSign. The correct radio button has been chosen for you already. Now, make sure you save this key in a place you can remember. In fact, in a production setting, it would be a good idea to record this information in a secure place. You may not be able to install your certificate without this information. Enter C:\englishcollectors.txt as the location and name of the key and click Next.
- Location: C:\englishcollectors.txt