Windows Server 2003 Certificate Server configuration method (graphics) _win server

Windows CA Certificate Server configuration (i)--microsoft Certificate Services installation 2008-09-2410:03 Installation preparation: Insert the Windows Server 2003 System installation CD

To add an IIS component:

Click ' OK ' and after installation, view IIS Manager as follows:

To add the Certificate Services component

If your machine does not have an Active Directory installed, the following window will pop up when you check the ' Certificate Services ':

Since we are going to install a stand-alone CA, we do not need to install the Active Directory, click ' Yes ', the window jumps to the following:

By default, ' generate key pair and CA certificate with custom ' is not checked, we check and click ' Next ' to select the key algorithm:

The default CSP for Microsoft Certificate Services is: Microsoft strong Cryptographicprovider, default hash algorithm: SHA-1, key length: 2048--You can make the appropriate choices as needed, here we use the default. Click ' Next ':

Fill in the common name of the CA (for example, AAAAA), and other information (such as mail, organization, department, etc.) can be added in the ' Distinguished name suffix ', which defaults to 5 years (as appropriate, as required, by default).

Click ' Next '

Click ' Next ' to enter the installation of the component, the following windows may pop up during installation:

Click ' Yes ' to continue with the installation and may then eject the following window:

Because the system automatically adds a certificate request service in IIS (which is why you must first install IIS), the service system is written in ASP, so you must enable ASP for IIS and click ' Yes ' to continue with the installation:

' Complete ' The installation of Certificate Services.

Start--"management tools-" certification authority, open the following window:

We have successfully configured a stand-alone root ca,web server and client with the common name AAAAA for the server to request the relevant certificate by accessing the server's IIS Certificate request service.

At this point, the server (CA) has more than the following entries under IIS:

We can apply for a digital certificate by entering the following URL in the browser:

Http://hostname/certsrv or Http://hostip/certsrv

The application interface is as follows: