It's a bit tricky to install certificates and keys, and harder still when you want to use the same certificate on both Windows and *NIX boxes. Most of us don't have to install certificates very often (!), but that doesn't make it any easier! If you're like me you forget at least one of the annoying little essential details.
So partly in light of questions I've been receiving, and partly so next time I encounter these problems I remember how I answered them, I'm putting together what I hope might be a useful “Practical Guide to Certificate Installation for the Disinterested“. In other words, I'm NOT discussing how to use certificates in production environments.
I'm kind of starting in the middle, but I've got three pieces ready so far. If you're not familiar with this area, OpenSSL is an open source tool for managing certificates and IIS is Microsoft's Internet Information Server (i.e. Web server). If you see problems with my instructions, please let me know.
Now for the pithy titles:
- Converting OpenSSL PEM certificates and keys into a P12 format for IIS
- Installing a machine certificate in the Windows certificate store
- Configuring IIS to use a machine certificate
I'm also going to tackle the issue of creating InfoCard-compatible certs for testing and developing purposes. If others want to add other sections let me know.