Agent for SharePoint Guide › Token-Signing Certificates Required by the Agent for SharePoint › How to Request and Install a Policy Server Certificate for the Agent for SharePoint
How to Request and Install a Policy Server Certificate for the Agent for SharePoint
The Policy Server requires an SSL certificate to sign the WS-Fed token it sends to the SharePoint claims provider.
Requesting and installing a Policy Server signing certificate for the Agent for SharePoint involves several separate procedures. Use the following process as a guide to request and import your own Policy Server signing certificate:
Note: This procedure provides one possible example of how to configure this feature using third-party tools. CA Technologies did not develop nor provide these tools. These tools are subject to change at any time by the third party without notice. Use this procedure as a guide for configuring this feature in your specific environment. The actual steps required in your situation could be different from the steps that are shown here.
- If you are using a self-signed certificate, start with Step 7.
Important! Do not use self-signed certificates in production environments. We recommend using self-signed certificates in test environments only.
- Create a certificate request for a server certificate on an IIS web server.
- Submit your server certificate request to the certificate authority.
- Wait for the Certificate Services administrator to approve your server certificate request.
- Verify your approval and download your server certificate and certificate chain.
- Complete your certificate request (using the same IIS web server and browser from Step 1).
- Export your server certificate files to the computer hosting the Policy Server.
- Add a certificate to Policy Servers and create a trust file.
- Install the certificate on the Agent for SharePoint system.
- Install the trust certificate by configuring your identity provider.
|
Copyright © 2012 CA.
All rights reserved.
|
|
