Procedure 2-8 – Motorola 2.1 User Manual

Page 41

Advertising
background image

Chapter 2: Network Setup

Procedure 2-8 describes how to install certificates on the authentication server.

Procedure 2-8

Installing Certificates on the Authentication Server

1

Connect to the certificate server web site.
From the RADIUS server computer, connect to the certificate server certificate services interface:
e.g., http://172.31.0.21/certsrv
If prompted, enter the authentication information of a domain user. You may also need to add this
web site to your list of trusted sites if you are using a recent version of Internet Explorer.

3

Select Request a certificate from the task selection page.

4

Select Advanced certificate request.

5

Select Create and submit a certificate request to this CA.

6

Submit the certificate request. This involves filling in any identifying information requested and
any other options you require.

• Fill in all of the Identifying Information fields. The Name on the certificate should be that

of this server since it will be the server running radius. Enter the name radius in the
name field. Fill in the rest of the field e.g. email, company, etc.

• In the dropdown box change the Intended Purpose field to Server Authentication

Certificate

.

• Check

the

Mark keys as exportable

and Store certificate in the local computer

certificate store

boxes.

• Click

Submit

.

Result

: A confirmation dialog appears informing the user that the website is requesting a

certificate on their behalf and if they truly wish to request this certificate now.

• Click

Yes

.

8

Since we set up our certificate service to automatically issue certificates you will be immediately
be presented with a certificate to install. Click on the certificate to install.

9

Verify the certificate installation.

• Once installation is complete, verify correct installation by:

• Open

the

Certificates (Local Computer) MMC plugin: Start / Run / MMC.exe

.

• Browse to the certificate store by selecting: Console / Add/Remove Snap-in / Add… /

Certificates / Computer Account

.

Result

: The select PC dialog appears.

• Select

Local Computer

.

• Ensure that the new server certificate is stored in the Personal / Certificates folder.

If you do not find the CA certificate in the computer account / Local Computer certificate store as
indicated, it may have been copied to the my user account / Current User certificate store instead.

2-27

Advertising
Popular Brands
Popular manuals