<<< Previous page | Next page >>>

Part 1 - How to install and configure a certificate authority server to allow easy Outlook Web Access OWA connections to your web server:



AchatImmo Agence Immobilière

I hate receiving this warning: "There is a problem with this website's security certificate"...

SSL-Certificate-Error

...especially when using OWA with internet explorer version 8. In this new version of ie, whenever the certificate is non existant we need to accept the connection by clicking the red X "Continue to this website (not recommended)" link every time we open a message or do any action. If you are like me and just want to get your email messages in OWA without being bothered by Microsoft every 2 seconds, just install a CA (Certificate Authority) and create a certificate for your IIS server and copy it on your workstations and laptops.

If you are lazy, be sure to check our guide "How to automaticaly deliver a certificate through Window's domain security policy" so you will not have to manually copy the certificate to all the computers in your domain.

Also, a certificate is needed to install RPC over HTTPs which can be a very nice service to offer your users.

Before starting, make sure IIS is installed on the server, it is needed by the certificate service.


Install Certificate Services for Windows server 2003

  1. In control panel, double-click "Add or Remove Programs".


    2. Add or Remove Programs
  2. Click on "Add/Remove Windows Components".


    3. Windows Components Wizard Add Certificate Services
  3. Click to check "Certificate services".


    4. Microsoft Certificate Services
  4. Unless you are planning to change the server name or change its domain to another, accept the warning and click Yes.


    5. Windows Components Wizard Add Certificate Services
  5. Click Next.


    6. Windows Components Wizard
  6. Accept the default "Enterprise root CA", click Next.


    7. Note: If this server is not part of a domain, both Enterprise root and subordinate CA will be grayed out. If this is your case, select "Stand alone root CA" instead.

    Windows Components Wizard Add Common Name CA
  7. Type the common name for this CA. Can be anything, use descriptive CA name.


    8. Windows Components Wizard Add Common Name CA
  8. Leave the database path and name to the default and click Next.


    9. Windows Components Wizard Add Common Name CA
  9. Accept the warning about restarting IIS, click Yes.


    10. Note: If "Symantec Endpoint Protection Manager" is installed on the server, you may have to stop it before being able to stop and restart IIS.

    Insert Disk Windows Server 2003
  10. If Windows Server 2003 does not find the source files, it will ask for the CD-ROM.
    Insert the disk and click OK.



<<< Previous page | Next page >>>

[ Home | Services | Howtos | Contact us ]