User's Manual
Table Of Contents
28
♦ Prepare a certificate
When using HTTPS, A CA-Signed certificate or Self-Signed certificate is required. When you cannot
prepare a CA-Signed certificate, create Self-Signed certificate.
Tips
A CA-signed certificate is recommended to use.
♦ Create Self-Signed certificate
There are two ways of creating Self-Signed certificate. One way is to use makecert.exe (Certificate
Creation Tool), another way is to use keytool.exe that NEC ESMPRO Manager bundles.
The way to use "makecert.exe"
"makecert.exe" is available by installing Windows SDK, and it is possible to use it. Create
Self-Signed certificate by "makecert.exe" on a server that NEC ESMPRO ServerAgentService was
installed.
Log on the server by Administrator and execute a following command on Windows SDK Command
Prompt.
makecert.exe -r -pe -n "CN=IP Address" -e expiranation_date -eku 1.3.6.1.5.5.7.3.1 -ss my
-sr localMachine -sky exchange -sp "Microsoft RSA SChannel Cryptographic Provider" -sy
12 certificate name.cer
Example: In case of the server's IP Address is 192.168.1.1.
makecert.exe -r -pe -n "CN=192.168.1.1" -e 01/01/2020 -eku 1.3.6.1.5.5.7.3.1 -ss my -sr
localMachine -sky exchange -sp "Microsoft RSA SChannel Cryptographic Provider" -sy 12
C:¥temp¥esmprosas.cer
Tips
● In case of an example, esmprosas.cer is made in C:¥temp. Make C:¥temp
folder before executing makecert.exe.
● In case of to use makecert.exe, it is not necessary to register the certificate.
● Refer to the following site about makecert.exe.
- Makecert.exe (Certificate Creation Tool)
http://msdn.microsoft.com/en-us/library/bfsktky3(v=vs.100).aspx