SiteMinder Agent for SharePoint Guide › Advanced Options › How to Protect the Claims WS Service using SSL › Request a Client Certificate

Request a Client Certificate

A mutual trust relationship between the claims search service and the claims provider requires a client certificate.

Several third-party tools are available for creating certificates. This procedure provides one possible example using Active Directory Certificate services and IIS 7.

If your organization uses different tools or procedures to create client certificates, use those tools or procedures instead.

If you already have a client certificate, skip this procedure.

Follow these steps:

1. Open your web browser.
2. Navigate to the following URL:

   https://fully_qualilfied_domain_name_of_server_running_active_directory_certificate_services/certsrv
   

   An example of such a URL is http://certificateauthority.example.com/certsrv.

3. Click Request a certificate.

   The Request a certificate screen appears.

4. Click the advanced certificate request link.
5. Click the Create and submit a request to this CA.

   An Advanced Certificate Request form appears.

6. Complete the form.

   Note: Under type of certificate needed, verify that Client Authentication Certificate appears in the drop-down list.

7. Click Submit.

   A confirmation dialog appears.

8. Click Yes.

   The request is submitted.

9. Note the following items for future reference:
   • Your request ID.
   • Use the same browser to verify the status of your request within ten days.