To obtain a certificate on a Web server

  1. If the Default Web Site Properties dialog box is open, skip to step 4.

  2. Click Start and then point to Administrative Tools. Click Internet Information Services (IIS) Manager.

  3. In Internet Information Services (IIS) Manager, expand Web Sites, right-click Default Web Site, and then click Properties.

  4. On the Default Web Site Properties dialog box, click the Directory Security tab.

  5. On the Directory Security tab, click the Server Certificate button.

  6. On the Welcome to the Web Server Certificate Wizard page, click Next.

  7. On the Server Certificate page, select Create a new certificate, and then click Next.

  8. On the Delayed or Immediate Request page, select Send the request immediately to an online certification authority, and then click Next.

  9. On the Name and Security Settings page, leave the default settings in the Name text box and in the Bit length drop-down list, and then click Next.

  10. On the Organization Information page, type the name of your organization in the Organization text box and an organizational unit name in the Organizational Unit text box, and then click Next.

  11. On the Your Site’s Common Name page, type the host name that Forefront TMG uses to forward requests to the Web server. This name should include the name of the domain where all the Web servers that will be published with the wildcard certificate reside. For example, type in the Common name text box.

  12. Click Next.

  13. On the Geographical Information page, in Country/Region, select your country or region from the list, in State/province name and City/locality, type the applicable names, and then click Next.

  14. On the SSL Port page, use the default value of 443, and then click Next.

  15. On the Choose a Certification Authority page, use the default entry, which represents the enterprise certification authority for the local computer, and then click Next.

  16. Review the information on the Certificate Request Submission page, and then click Next.

  17. On the Completing the Web Server Certificate Wizard page, click Finish.

  18. On the Default Web Site Properties dialog box, click OK.

After you successfully complete this procedure for each of the Web servers, you need to create a Web listener that listens on the SSL port and uses the wildcard certificate, and then you need to create a Web publishing rule that uses this Web listener for each Web site.

Related Topics

Copyright © 2009 by Microsoft Corporation. All rights reserved.