Windows Server 2008/2012/2016 (IIS 7/7.5 – IIS 8/8.5) Binding Instructions

To learn how to assign/bind an already installed SSL Certificate to a IIS website perform the following. Assign and Bind the SSL certificate to your web site: Click Start > Administrative Tools > Internet Information Services (IIS) Manager. Browse to your server name > Sites > Your SSL-based site. In the Actions pane, click Bindings… In the Site Bindings window, If there is no existing https binding, choose Add and change Type from HTTP to HTTPS. Note: If there is already a https binding, select it and click Edit. From the SSL Certificate drop down, Specify a  Friendly Name for the SSL certificate that will be used for this site. Click OK. Congrats you have configured your website to work […]

Read More

How To Move An SSL Certificate From Windows To Sonicwall NSA

Windows servers use .pfx/.p12 files to contain the public key file (SSL Certificate) and its unique private key file. You need both the public key and private keys for an SSL certificate to work properly on any system. If you need to transfer your SSL certificate from one server to another or store it someplace for safe keeping you need to create a .pfx backup.  Dell Sonicwall systems have the capability to import a pfx file generated from windows. To backup, export, and move an SSL certificate from a Windows Server to SonicWALL with its private key perform the following steps. Step 1:  Create an MMC Snap-in for Managing Certificates on the IIS 8 system: Start > run > MMC. Go […]

Read More

Microsoft Server 2016 – IIS 10 & 10.5 – CSR Instructions

To generate a Certificate Signing Request (CSR) for Server 2016 – IIS 10 & 10.5 you will need to create a key pair for your server the public key and private key. These two items are a digital certificate key pair and cannot be separated. On Windows type systems like Microsoft Server 2016 – IIS 10 & 10.5 PFX/PKCS12 requests are made, and are stored on the system. The private key will remain hidden on the windows system where the CSR request is made. To generate a CSR on Windows Server 2016 – IIS 10 & 10.5 perform the following. Step 1: Generating your CSR: Choose Start > Administrative Tools > Internet Information Services (IIS) Manager. In the IIS Manager […]

Read More

Microsoft Server 2016 – IIS 10 & 10.5 – SSL Installation

Like the majority of server systems you will install your SSL certificate on the same server where your Certificate Signing Request (CSR) was created. This is because your private key will always be left on the server system where the CSR was originally created. With Microsoft like Microsoft Server 2016 – IIS 10 & 10.5 the private key is hidden away and will only appear once the CSR request has been completed. Your SSL certificate will not work without this private key file. We will assume that this is the original system. To Install your SSL certificate on Windows Server 2012 – IIS 8 & 8.5 perform the following. Step 1: Picking up your SSL Certificate: If you had the option […]

Read More

Digitally Signing and Encrypting Email Messages – Outlook Guide

Digital signatures identify/authenticate you as the document signer and allow document recipients to verify that no one has modified the contents of the document since you signed it. Signing, Encrypting and reading will vary depending on the applications that are involved. Things to Note.. Depending on the following scenarios you may have to import your Digital ID into your Windows personal Certificate Trust Store. If one of these two scenarios effects you then reference our guide. How To Import A Digital, Email or Code Signing Certificate Into A Windows System. Your Digital ID was picked up using Firefox. Firefox has its own trust stores separate from Outlook/Windows and therefore Outlook will never see the certificate on your system. You are […]

Read More

How To Import A Digital ID, Email, or Code Signing Certificate Into A Windows System?

Digital signatures identify/authenticate you as the document signer and allow document recipients to verify that no one has modified the contents of the document since you signed it. Signing, Encrypting and reading will vary depending on the applications that are involved. A Digital ID certificate is required to create a digital signature. The most secure Digital ID are issued by a trusted Certificate Authority. Some of these Digital ID’s are on tokens and other are files that are imported into trust stores on your system or application. On Windows operating systems the majority of these applications refer to the User trust stores. Note: Majority of the time Firefox is used to generate Digital ID Certificates Firefox, but Firefox does not […]

Read More

How To Move SSL Ceritifcate From Windows To Mitel MiCollab MSL Server

Like the majority of server systems you will install your SSL certificate on the same server where your Certificate Signing Request (CSR) was created. Your private key will always be left on the server system where the CSR was originally created. Your SSL certificate will not work without this private key file. We will assume that this is the original system. MiCollab systems have the capability of importing a pfx/p12 file which is a keypair file that Microsoft Systems like IIS/Exchange uses that contains both the SSL Certificate and it’s Private key. To export your installed SSL Certificate with its private key from a Windows System to Mitel MiCollab MSL Server perform the following. Step 1:  Create an MMC Snap-in for […]

Read More

How To Enable Or Import A Root Certifciate In Windows Systems Using MMC.

Depending on the circumstance you may be getting mixed results of browser certificate trust or for whatever reason are experiencing an issue with Cross Root Certificates or warning of not fully trusting a chaining root. Cross Root Certificate where used back in the day by some Certificate Authorities to help certificate trust to older outdated server systems, but due to liability of allowing certificate trust to these systems that practice is no longer practiced. SSL Certificates are now used to modernize and update industry standards not give loop wholes around staying secure. To bypass a Cross Root Certificate warning it is a matter of making sure a new updated root is installed on the system in question and that all purposes […]

Read More

How To Export an SSL Certificate With Private Key (pfx) Using MMC On Windows

Windows servers use .pfx/.p12 files to contain the public key file (SSL Certificate) and its unique private key file.  The Certificate Authority (CA) provides you with your SSL Certificate (public key file). You use your server to generate the associated private key file where the CSR was created. You need both the public key and private keys for an SSL certificate to work properly on any system. Windows uses the pkcs#12 (pfx/p12) file to contain these two keys and another of intermediate certificates along the chain of trust; therefore, if you need to transfer your SSL certificate from one Windows system to another that uses PFX files or store it someplace for safe keeping you need to create a pkcs#12 (pfx/p12) backup. […]

Read More

“WannaCry” Blocked by Symantec – Best Practices Against Ransomware.

A world wide cyberattack that caused chaos On May 12, 2017  is still ongoing involving a ransomware named WannaCry (aka WCry). These attacks are targeting and have affected users from various countries across the globe. The WannaCry threat will encrypt data files on infected computers and ask users to pay a $300 US ransom in bitcoin to decrypt their files. A specific exploit against this vulnerability, code-named “Eternal Blue”, and was made available through a dump of various attack tools by the group Shadow Brokers, on April 14, 2017. Analysis indicates the attack spreads through an SMB remote code execution in Microsoft Windows. This was announced and patched by Microsoft on March 14, 2017. That is two whole months where if a patch […]

Read More