Ideally, you want to import a CA certificate here and use that CA certificate to generate the certificates for your CAS server & your app servers, but I think you can import your CAS server directly to the trusted root certificate authorities store. Here's the procedure:
Start+Run, mmc File, Add/Remove Snap-in Certificates, Add Computer Account, Next Local computer, Finish, OK Expand the tree to Certificates -> Trusted Root Certificate Authorities -> Certificates Right click on Certificates in the tree, All tasks, Import From: Balendran Thavarajah [mailto:balendran.thavara...@standards.org.au] Sent: Monday, March 21, 2011 8:54 PM To: cas-user@lists.jasig.org Subject: [cas-user] Dot Net CAS Client - SSL certificate best practice Hi All, Can someone point me to any documentation on how to import CAS certificate into IIS.? May be some best practices if anyone has implemented in their environment. Our CAS runs on a Tomcat 7 with java keystore for SSL. For local application development we just downloaded the server certificate through web browser and imported into the trusted key store of windows. Thanks ______________________________________________________________________ This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email ______________________________________________________________________ -- You are currently subscribed to cas-user@lists.jasig.org<mailto:cas-user@lists.jasig.org> as: sholo...@princeton.edu<mailto:sholo...@princeton.edu> To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to cas-user@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
