HTTPS Certificate

Create a Certificate Template for HTTPS Binding

To complete this step, the Active Directory Certificate Services (AD CS) role must be installed and configured in your infrastructure.

  1. Connect to your company’s Certificate Server.

  2. Open the Certification Authority console and navigate to the Certificate Templates section.

  3. Right-click on the Certificate Templates folder and select Manage.

  4. From the list, locate the Web Server template, right-click it, and select Duplicate Template.

  5. Configure the following settings:

    • General Tab: Fill in the Display Name and Template Name fields (e.g., ARK2FA SSL Template).

    • Request Handling Tab: Check the option Allow private key to be exported.

    • Subject Name Tab: Select Supply in the request.

    • Security Tab: Add the computer account of the ARK2FA server (TEST-SRV01$). Grant this account Enroll permission, then click OK.

  6. Click OK to save the template and close the “Certificate Templates” window.

  7. In the Certification Authority main window, right-click the Certificate Templates folder, select New, then choose Certificate Template to Issue.

  8. Select the newly created ARK2FA SSL Template and click OK.

Request an HTTPS Certificate

ARK2FA is a web-based application that operates over the HTTPS protocol.

  1. To generate the certificate, run mmc.exe on the ARK2FA server (TEST-SRV01). Add the Certificates snap-in for the Computer account > Local computer.

  2. Right-click on the Personal folder, hover over All Tasks, and select Request New Certificate...

  3. On the “Before You Begin” page, click Next.

  4. On the “Select Certificate Enrollment Policy” page, click Next again.

  5. Choose the previously created ARK2FA SSL Template. This certificate requires additional information — click More information...

  6. In the “Subject” window, fill out the Subject Name and Alternative Name fields as follows:

    • Subject Name:

      • Type: Common Name

      • Value: ark2fa.domain.com

      • Click Add.

    • Alternative Name:

      • Type: DNS

      • Value: ark2fa.domain.com

      • Click Add.

      • Value: TEST-SRV01.domain.com

      • Click Add.

    • Click OK to confirm.

  7. On the “Request Certificates” page, the Enroll button will become active. Click Enroll to complete the certificate request process, then click Finish to close the wizard.

PreviousInternet Information Service InstallationNext.NET Core 8.0 Download and Install

Last updated