VMware – Replace the ESX Certificate
ESX Certificate KB ID 0000974 Problem ESXi comes with a self-signed certificate, and for most people that’s fine, but some clients want to have a ‘Trusted’ certificate on theirs, and have their own PKI infrastructure for issuing them. Below I will generate a new certificate for my ESXi server using the Active Directory Certificate Services role on Windows Server 2012. Then replace the self-signed certificate with my new...
IIS: How to Create a Certificate Request
KB ID 0000840 Problem If you would like to obtain a digital certificate either from your own CA, or from a public certificate vendor, you need to submit a certificate signing request (csr) first. Solution Note: I’m making the assumption you have already installed the Web Server (IIS) role on your server. 1. Windows Key+R > iis.msc {Enter} > Select the servername > Server Certificates. 2. Create Certificate Request >...
SBS Exchange Certificate Expired
KB ID 0000535 Problem When you setup SBS2008 (and Exchange 2007) it creates and uses a self signed certificate, which is fine. But by default it only lasts two years. The best option is to buy a proper certificate, but if you simply want to generate a new one here’s how to do it. Solution 1. Here you can see your certificate has expired. 2. Normally you need to access your certificate services web enrolment console to carry this...
Exchange 2010 – Working with Certificates
KB ID 0000453 Problem Exchange 2010 installs with it’s own (self signed) certificate. To stay free of security errors and warnings, the best bet is to purchase a “publicly signed” digital certificate and use that. The following process uses the Exchange Management console to create a CSR (Certificate Signing Request). Then what to do with the certificate, when it has been sent back to you. Solution Certificate...
Cisco ISE – Replace the Self Signed Certificate
KB ID 0001068 Problem Cisco ISE arms itself with a self generated certificate out of the box, (well the NFR appliance does anyway). To replace that cert with one signed by your own CA, this is the procedure. (Note: I’m using Microsoft Certificate Services on Server 2012 R2). Solution Step 1: Import the CA Certificate into ISE Note: If you have a lot issuing servers it’s a good idea the repeat this procedure for EVERY...