Print

Installing a Microsoft Certificate Services-based certificate on the Microsoft Office Communications Server 2007

About this task

From the Microsoft Office Communications Server 2007, follow this procedure to install a server certificate issued by Microsoft Certificate Services.

noteNote

In terms of the Microsoft Office Communications Server 2007 Certificate Configuration Guide, the AE Services implementation for Microsoft Office Communications Server 2007 falls into the category of interoperating with partner systems. This means that you must install a certificate that is configured for both client and server authorization. You do this by selecting Include client EKU as depicted in Step 8 d.

Procedure

  1. Log on to the Microsoft Office Communications Server that needs to be configured with a certificate.
  2. From the Start Menu of the Microsoft Office Communications Server 2007 management console, select Administrative Tools > Office Communications Server 2007.
  3. From the left pane of the Microsoft Office Communications Server control panel, expand the Forest node (Forest - example.com) then Enterprise pools and Front Ends.
  4. Right click the name of your server node, and click Certificates.
  5. From the Welcome screen of the Certificate Wizard, click Next.
  6. From the Available Certificate Tasks screen, accept the default selection, Create a new certificate, and click Next.
  7. From the Delayed or Immediate Request screen, accept the default selection, Send the request immediately to an online certification authority, and click Next.
  8. Complete the Name and Security Settings screen as follows:
    1. In the Name field, type the name of the certificate. Create a name that is meaningful and unique for your server.
    2. In the Bit length field, accept the default, 1024.
    3. Accept the default for Mark cert as exportable (by default a check mark appears in the check box).
    4. Select Include client EKU in the certificate request. Make sure a check mark appears in this box. By selecting this option, you are installing a certificate that is configured for both client and server authorization.
    5. Click Next.
  9. From the Organizational Information screen, accept the default Organization name and Organizational Unit, and click Next.
  10. From the screen labeled Your Server’s Subject Name, accept the default Subject Name and the Subject Alternate Name, and click Next.
  11. From the Choose a Certification Authority screen, in the Select a certificate authority from the list detected in your environment field, select your CA from the drop-down list or specify your external CA, and click Next.
  12. From the Request Summary screen, review the information in the text display area, and click Next.

    The Office Communications Server Wizard displays the Certificate Wizard completed successfully screen, with an Assign button and a View button. Click View to inspect the certificate you just obtained, then click Assign to assign the certificate to the server. Click Finish to exit the Wizard.

  13. To put the certificate into effect, restart the Microsoft Office Communications Server 2007.

Example

noteNote

When you use the Certificate Wizard to install a certificate, the Wizard configures the certificate for automatic routing among your pool and servers.