Why have a SSL Certificate?:
You may want to add an SSL Certificate to EIOBoard to ensure the owning organization is legitimate and not a third-party, or other unsavory organization, which may use your information for illicit purposes
What is the purpose of an SSL on a web server?:
When a SSL certificate is used on a web server, it activates the padlock and the https protocol and allows secure connections from a web server to a browser. Typically, SSL is used to secure credit card transactions, data transfer and logins, and more recently is becoming the norm when securing browsing of social media sites.
How do I get a SSL Certification?:
The certificates must be issued by a Certificate Authority, which must verify the identity and legitimacy of those who request a certificate. You can request for a certificate by doing the following:
- Navigate to start -> settings -> control panel -> Administrative Tools -> Internet Services Manager
- Click on your computer name in the left window pane
- In the middle of the screen under IIS select “Server Certificates”
- In the right window pane click “Create Certificate Request”
- Now type in your Company Name, Organization, Organization Unit, City/Locality, State/Providence, and Country/Region where applicable and then click “Next”
- Next select your Cryptographic service provider (They encrypt your request for your SSL Certificate and are not the ones giving you your digital certificate)
- Select a file name for your request and save it somewhere safe
- You can now send this request file to your desired SSH provider for approval
Below are some sources you can purchase your SSL Certificate from:
How to assign a SSL Certificate to the EIOBoard website
- Navigate to the EIOBoard site in IIS
- Edit Site Bindings
- Either Add a binding for HTTPS, or edit the HTTPS binding if it already exists
- If adding a new binding, set type to https
- Once on https, select the SSL Certificate on the server you wish to use
How to add an SSL Certificate on EIOBoard customer hosted servers (assuming you already have the SSL certificate assigned to your website):
- Make sure you’re logged into your web server computer as an administrator
- Click Start, navigate to Settings, and then select Control Panel.
- Double-click Administrative Tools, and then double click Internet Services Manager.
- Select EIOBoard from the list of different served sites in the left pane.
- Right-click the Web site, folder, or file for which you want to configure SSL communication, and then click Properties.
- Click the Directory Security tab.
- Click Edit.
- Click Require secure-channel (SSL) if you want the Web site, folder, or file to require SSL communications.
- Click Require 128-bit encryption to configure 128-bit (instead of 40-bit) encryption support.
- To allow users to connect without supplying their own certificate, click Ignore client certificates. Alternatively, to allow a user to supply their own certificate, use Accept client certificates.
- To configure client mapping, click Enable client certificate mapping, and then click Edit to map client certificates to users.
*If you configure this functionality, you can map client certificates to individual users in Active Directory. You can use this functionality to automatically identify a user according to the certificate they supplied when they access the Web site. You can map users to certificates on a one-to-one basis (one certificate identifies one user) or you can map many certificates to one user (a list of certificates is matched against a specific user according to specific rules. The first valid match becomes the mapping).
- Click OK.