Users Guide
Using Microsoft Active Directory 183
2
Enable SSL on each of your domain controllers by installing the SSL
certificate for each controller.
a
Click
Start
→
Administrative Tools
→
Domain Security Policy
.
b
Expand the
Public Key Policies
folder, right-click
Automatic
Certificate Request Settings
and click
Automatic Certificate
Request
.
c
In the
Automatic Certificate Request Setup Wizard
, click
Next
and
select
Domain Controller
.
d
Click
Next
and click
Finish
.
Exporting the Domain Controller Root CA Certificate (RAC Only)
NOTE: The following steps may vary slightly if you are using Windows 2000.
1
Go to the domain controller on which you installed the Microsoft
Enterprise CA service.
2
Click
Start
→
Run
.
3
Ty p e
mmc
and click
OK
.
4
In the
Console 1
(MMC) window, click
File (or Console on Windows
2000 systems)
and select
Add/Remove Snap-in
.
5
In the
Add/Remove Snap-in
window, click
Add
.
6
In the
Standalone Snap-in
window, select
Certificates
and click
Add
.
7
Select
Computer
account and click
Next
.
8
Select
Local Computer
and click
Finish
.
9
Click
OK
.
10
In the
Console 1
window, expand the
Certificates
folder, expand the
Personal
folder, and click the
Certificates
folder.
11
Locate and right-click the root CA certificate, select
All Tasks
, and click
Export
.
12
In the
Certificate Export Wizard
, click
Next
and select
No do not export
the private key
.
13
Click
Next
and select
Base-64 encoded X.509 (.cer)
as the format.