Just amazing and your videos has improved a lot I'm watching you since long time and now you have become my guide
@MSFTWebCast
26 күн бұрын
Awesome, thank you!
@DaniLearnsIT
Жыл бұрын
You keep showing up in all the searches I do. Thank you so much for making these videos!
@mvdefun
Жыл бұрын
Amazing video series! Filled all the knowledge gaps I was missing to get this done
@MSFTWebCast
Жыл бұрын
Great to hear!
@BaoTran-nm7un
3 ай бұрын
Thanks for great video, I have a small question. On the video, you showed the public key on this .cer file, how can we access the associated private key?
@ldavader2704
Жыл бұрын
Great video but I'm still having trouble... Everything seems ok from my CA machine's browser but from my client (Win10 pc) it shows as SSL_ERROR_BAD_CERT_DOMAIN. I've been looking under the Certificates Console and the CA certificate shows up under the Trusted Rooted Certification Autoritities. DNS resolution has also been check, not an issue. Still don't get it what happening... Suggestions? Thanks.
@davidbondo5591
11 ай бұрын
Awesome video ,please kindly do how to install certificate on the server after downloading
@JustJiril
Жыл бұрын
this was informative. thank you brother.
@brittanysikora8727
8 ай бұрын
Thank you so much, just what I needed.
@RupeshKumar-yv4qx
2 жыл бұрын
Too good explanation. Very much helpful. Many Thanks
@alphonsesossou4283
3 жыл бұрын
Great tutorial. I have multiple domain controllers. How do I use a pfx certificate in such environment to get rid of "Not secure warning message" ?
@lhachimichaimae6405
5 ай бұрын
What is the difference between what you are doing in this video and the last three videos? It gives the same result, doesn't it?
@bupathisuma7092
4 ай бұрын
Hello I have created a csr and got the signed cert to generate pfx file from the cer may I know the steps to follow
@antoniorodrigues8495
Жыл бұрын
Hello i got this message while completing the certificate signing request " No certificate templates could be found. You do not have permission to request a certificate from this CA, or an error occurred while accessing the Active Directory. "
@dodyjoko5514
Жыл бұрын
Very Fruitful, Terima Kasih Banyak
@MSFTWebCast
Жыл бұрын
Thank You too.
@GreekBistro
3 жыл бұрын
another great and well explained video, thank you
@sivaprasad4263
Жыл бұрын
Followed your video steps working only on explorer other browser showing invalid certificate.please look into it
@garugubilliprasad4563
5 ай бұрын
Can you please let me know how can i create csr for 3 yrs expiry and how can i mention 3 yrs validity in that certificate
@TechTrendsBharat
Жыл бұрын
I want to install the SSL certificate on local IP like some web server (VMware-Esxi, vCenter console IP) can you share a separate video for its process
@MSFTWebCast
Жыл бұрын
Why you want to install certificate with IP? You can use subject alternative name (SAN) option in certificate to add IPs.
@nikolay.shpilchin
4 жыл бұрын
Спасибо! Все очень понятно объясняете. Круто!
@mahmoudalaskalany
3 жыл бұрын
this video deserves 1m like
@chunwaihome
6 ай бұрын
I follow your video, memeber web server can access only itself https without warning, but how make other domain clients can also access https without warning?
@MSFTWebCast
6 ай бұрын
1. Distribute root CA certificate group policy or 2. Configure Group Policy to Auto-enroll and Deploy Certificates.
@IyoniAdeMacy
8 ай бұрын
how did you get the website at 6:04?? I'm confused and stuck on that part
@andreruiz3404
5 ай бұрын
(1)
@ismailhadjir9703
Жыл бұрын
Thanks for the video
@eddykain4983
3 жыл бұрын
Very well done Sir!
@MSFTWebCast
3 жыл бұрын
Thank you!
@seanaustin3815
4 жыл бұрын
Great English! I learned something new watching your video :)
@pear7777
3 жыл бұрын
Why didn't your comment get upvotes?????
@muhammadyanurfillah3788
7 ай бұрын
instant new subscriber
@MSFTWebCast
7 ай бұрын
Awesome, thank you!
@danielruzicka3858
3 ай бұрын
I got the "Certificate Pending and that I have to wait for the administrator, even tho I am the administrator in my own lab. Anyone knows how can I confirm or allow it ?
@MSFTWebCast
3 ай бұрын
Open Certification Authority on your CA. Expand Local CA name and click on Pending Requests. Select the requested certificate and approve it.
@eliassal1
3 жыл бұрын
well explained video. Can you tell me how we can add attributes like Subject alternative name and issuer Alternative Name as this is necessary to force chrome trust the certificate and stops displaying the red "Not secure" text? Thanks for your efforts
@MSFTWebCast
3 жыл бұрын
You can follow this video to create certificate with Subject Alternative Names: kzitem.info/news/bejne/zKian46pg3WLaag If you are using self-signed certificate than import the certificate into trusted root certification authorities certificate store. In case, you are using internal Certification authority then import CA certificate into trusted root certification authorities certificate store. This will fix the "Not Secure" error.
@eliassal1
3 жыл бұрын
@@MSFTWebCast with Chrome it is not sufficient import CA certificate into trusted root, certificate should have SAN DNS name
@eliassal1
3 жыл бұрын
I watched the other video, very useful and informative, however, after creating the SAN certificate, adding it to IIS, then on my dev win 10 machine, added the certificate to the trusted zone, nor chrome nor edge wants to accept it, still getting "Not secure" whereas certificates I have created in the past with XCA tool were accepted by chrome
@MSFTWebCast
3 жыл бұрын
@@eliassal1 Can you mail me the screenshot of certificate with names and the error as well. You can find my email address on about tab (Channel Page).
@eliassal1
3 жыл бұрын
@@MSFTWebCast Email sent with screenshots
@cdphotography2
3 жыл бұрын
If I wanted to add additional attributes for for SAN names or hostnames what is the format for that ? Is it just list the names separated by space or commas or something else ?
@MSFTWebCast
3 жыл бұрын
Please refer this video: kzitem.info/news/bejne/zKian46pg3WLaag
@alejandromarin9661
4 жыл бұрын
Great video, thank you!
@brianwatson1043
3 жыл бұрын
Understood everything until internet explorer where you add your server address. Tried many things but could not get it to go to the page as in the video.
@MSFTWebCast
3 жыл бұрын
I used Internet Explorer to access the web enrollment interface of the Internal (Local) certificate authority, by using /certsrv Note: To access certificate web enrollment page, you must have installed the CA web enrollment service on your server.
@nsomba
2 жыл бұрын
Hello when I add "certsrv" to URL it doesn't get me the authentication instead it give me an error 404 this as minute 6.01
@MSFTWebCast
2 жыл бұрын
Did you check for certsrv virtual directory in IIS manager? Does the physical directory under C:\Windows\System32\CertSrv\En-US exists? The simple solution is: Uninstall and reinstall the certification authority web enrollment role. Keep in mind only CA web enrollment service.
@IyoniAdeMacy
8 ай бұрын
Were you ever able to figure this out?? It's not making sense
@MYTC6009
3 жыл бұрын
Well explained video.
@abhijeetsingh6193
Жыл бұрын
Unable to browse web server from member server. Please help
@adrianortiz7433
3 жыл бұрын
thank you
@7adt
Жыл бұрын
can i generate CSR certificate on IIS to use for another webserver?
@MSFTWebCast
Жыл бұрын
You can generate the CSR from any server you like.
@peter_mitch1880
2 жыл бұрын
Do we need to be connected to internet for this to work ?
@MSFTWebCast
2 жыл бұрын
No, it will perfectly fine with local network.
@venkateshm6040
Ай бұрын
Which format SSL cert for Windows servers?
@MSFTWebCast
Ай бұрын
.cer format.
@venkateshm6040
Ай бұрын
@@MSFTWebCast But windows server will pick only pfx cert only, right? and as you said in the process that will not create a private key, How do we get private key?
@MSFTWebCast
Ай бұрын
@@venkateshm6040 Hello, could you please provide more details about what you're trying to accomplish?
@ramamannem8729
Ай бұрын
@@MSFTWebCast I want to place DIGICERT in Windows server, the cert need private key, how to generate a private key to import pfx cert?
@anzarsainudeen8806
2 жыл бұрын
super ,
@chunwaihome
7 ай бұрын
Does web server join domain
@MSFTWebCast
7 ай бұрын
In this video, the web server is joined to the Active Directory domain.
@fadwa2413
3 ай бұрын
enable CC please
@gabrielluizbh
Жыл бұрын
Why don't you release subtitles.
@MSFTWebCast
Жыл бұрын
Hi, this is the old video, I have started to add hard-coded subtitles in all the newer videos. Will try to add the subtitle in older videos too.
@gabrielluizbh
Жыл бұрын
@@MSFTWebCast Thank you very much.
@ahmedsaad-lk2og
2 жыл бұрын
good
@DmitryMalyshok
5 жыл бұрын
Спасибо
@Imhemantnegi
2 жыл бұрын
my certificate came in the form of p7b, how to convert to .cer ?
@MSFTWebCast
2 жыл бұрын
Why dont you export the certificate again with .cer format? Yes, there are ways to convert it using some SSL converter tool but I have never tried it.
@Imhemantnegi
2 жыл бұрын
@@MSFTWebCast each time my ad certificate server is giving in p7b form only and when I am completing the request using p7b on iis, it is not recognizing the key. Basically looking for pfx or cer. My organization has given me the url of ad certificate server, like you were generaing in the video. Your certificate is coming in .cer but mine is coming in p7b
@IyoniAdeMacy
8 ай бұрын
Did you ever figure this out?
@krishnasameer704
Жыл бұрын
Almost ok. But some steps are missed. And clarity missed.
@MSFTWebCast
Жыл бұрын
Can you tell me more about the missing steps, so I could include those while re-creating the video with windows 11.
@משהכהן-ס4כ
3 ай бұрын
it does not work on chrome
@MSFTWebCast
3 ай бұрын
Google Chrome requires SSL certificates to use Subject Alternative Name (SAN) instead of the popular Common Name (CN). So you have to use SAN certificate.
Пікірлер: 85