Open SSL Tool
Installation Link: https://slproweb.com/products/Win32OpenSSL.html
from this page Win64 OpenSSL v3.2.0
after installing the exe file.
set the environment variable
go to path property
and set the path
C:\Program Files\OpenSSL-Win64\bin
after setting the path
open cmd
check version : openssl version
if you can see the version
then for creating two files
openssl req -newkey rsa:2048 -nodes -keyout 127.0.0.1.key -x509 -days 365 -out 127.0.0.1.crt
for creating pfx file to import in the IIS Server Certificates
openssl req -newkey rsa:2048 -nodes -keyout 127.0.0.1.key -x509 -days 365 -out 127.0.0.1.crt -subj "/C=US/ST=State/L=City/O=Organization/CN=127.0.0.1" -addext "subjectAltName = IP:127.0.0.1"
for creating pfx file with a password
openssl pkcs12 -export -out 127.0.0.1.pfx -inkey 127.0.0.1.key -in 127.0.0.1.crt -passout pass:your_password_here
====================================================================
To Add a Certificate in Trusted Certificates in MMC Tool
To add a certificate to the Trusted Root Certification Authorities store using the Microsoft Management Console (MMC), you can follow these steps:
1. Open the MMC snap-in:
- Press `Win + R` to open the Run dialog.
- Type `mmc` and press Enter to open the Microsoft Management Console.
2. Add the Certificates snap-in:
- In the MMC, go to "File" > "Add/Remove Snap-in..."
- In the "Add or Remove Snap-ins" window, select "Certificates" and click "Add >."
- Choose "Computer account" and click "Next."
- Choose "Local computer" and click "Finish."
- Click "OK" to close the "Add or Remove Snap-ins" window.
3. Navigate to the Trusted Root Certification Authorities store:
- In the left pane of the MMC, expand "Certificates (Local Computer)" > "Trusted Root Certification Authorities."
4. Import the certificate:
- Right-click on "Certificates" under "Trusted Root Certification Authorities" in the left pane.
- Choose "All Tasks" > "Import..." from the context menu.
- Follow the Certificate Import Wizard.
- Browse and select the certificate file you want to import (e.g., the `127.0.0.1.crt` file).
- Choose "Place all certificates in the following store" and select "Trusted Root Certification Authorities."
- Complete the wizard, and the certificate should be imported.
After completing these steps, the certificate should be added to the Trusted Root Certification Authorities store on your computer.
Keep in mind that adding a certificate to the Trusted Root Certification Authorities store should be done cautiously, as it implies trust in the certificate's authority. Ensure that you are importing certificates from trusted sources.
==========================================================
No comments:
Post a Comment