SiteMinder Agent for SharePoint GuideToken-Signing Certificates Required by the Agent for SharePoint › How to Request and Install a Policy Server Certificate for the Agent for SharePoint

Previous Topic: Token–Signing Certificate Locations in Your SharePoint Environment

Next Topic: Create a Certificate Request for a Server Certificate on an IIS Web Server

How to Request and Install a Policy Server Certificate for the Agent for SharePoint

The Policy Server requires an SSL certificate to sign the WS-Fed token it sends to the SharePoint claims provider.

Requesting and installing a Policy Server signing certificate for the Agent for SharePoint involves several separate procedures. Use the following process as a guide to request and import your own Policy Server signing certificate:

Note: This procedure provides one possible example of how to configure this feature using third-party tools. CA Technologies did not develop nor provide these tools. These tools are subject to change at any time by the third party without notice. Use this procedure as a guide for configuring this feature in your specific environment. The actual steps required in your situation could be different from the steps that are shown here.

  1. If you are using a self-signed certificate, start with Step 7.

    Important! Do not use self-signed certificates in production environments. We recommend using self-signed certificates in test environments only.

  2. Create a certificate request for a server certificate on an IIS web server.
  3. Submit your server certificate request to the certificate authority.
  4. Wait for the Certificate Services administrator to approve your server certificate request.
  5. Verify your approval and download your server certificate and certificate chain.
  6. Complete your certificate request (using the same IIS web server and browser from Step 1).
  7. Export your server certificate files to the computer hosting the Policy Server.
  8. Verify certificate support on Policy Servers.
  9. Configure certificate support on Policy servers.
  10. Add a certificate to Policy Servers and create a trust file.
  11. Install the certificate on the Agent for SharePoint system.
  12. Install the trust certificate by configuring your identity provider.