Previous Topic: How to Integrate with CA SiteMinderNext Topic: Configure Automatic Certificate Allocation from an Enterprise Certificate Authority


Enable Active Directory SSL with Active Directory in Windows 2008 (Optional)

To encrypt the communication between CA ControlMinder Enterprise Management and users when using Active Directory, configure Enterprise Management to use SSL.

Note: This step is optional if you are using Active Directory on Windows 2008.

Follow these steps:

  1. On the Active Directory Computer, open Server Manager. Select Roles and Add Roles from the drop-down menu and click Next.

    The Add Roles Wizard Before you Begin Window opens.

  2. Complete the wizard as follows:
    1. Check the Skip this page by default box and click Next.
    2. Select Active Directory Certificate Services and Click Next.

      The Select Role Services window opens.

    3. Select Certification Authority and click Next.

      The Specify Setup Type window opens.

    4. Select Enterprise and click Next.

      The Specify CA Type window opens.

    5. Select Root CA and click Next.

      The Set Up Private Key window opens.

    6. Select Create a new private key and click Next.

      The Configure Cryptography for CA window opens.

    7. Select the appropriate cryptographic service provider, hash algorithm, and key length and click Next.

      The Configure CA Name window opens.

    8. Enter a common name and click Next.

      The Validity Period screen opens.

    9. Use the default validity period (five years) and click Next.

      The Certificate Database screen opens.

    10. Use the default certificate database and login location and click Next.

      The Confirm Installation Selections screen opens.

    11. Review the installation selections and click Install.

      The roles are installed and the installation is complete.

  3. Click Finish and restart the computer.
  4. Click Start, select Administrative Tools, and Certification Authority.

    The Certification Authority application is launched and the Certificate Authority window opens.

  5. In the Certification Authority drop-down menu on the left, locate your certificate in the Certificates folder to confirm that a certificate is issued.