How to Create and Install the Digital Certificate for the Collector Server

Communication between modSIC and the CENTRAL web application (core application) is established through a secure channel using a digital certificate.

Described below are the steps necessary to create and install the digital certificate:

 

1.    Open a command console by clicking Start, then enter “cmd” in the Search programs and files field. Once the “cmd.exe” program is listed, right-click it and click Run as administrator.

2.    In the User Access Control window, click Yes.

3.    In the command console, enter the commands below:

makecert.exe  -n  “CN=FQDN_Server”  -pe  -ss My  -sr LocalMachine  -sky exchange  -a sha1  -len  2048  -r  c:\CollectServer.cer

The above command creates a digital certificate named ModSIC using the SHA1 encryption algorithm with a 2048-bit public key, and is provided on the root of the C drive of the server, named modSIC.cer.

4.    Once the digital certificate has been created, it must be installed. Click Start, execute Run. In the Open field, enter “mmc” and click OK.

5.    Click File and then click Add/Remove Snap-in. In the Available snap-ins section, select Certificates and click Add. Select the Computer account option and click Next. Select the Local computer option and click Finish. In the following screen, click OK.

6.    In the Console1 window, expand Console Root, Certificates (Local Computer), Trusted Root Certification Authorities. Right-click Certificates, expand All Tasks, and click Import.

7.    In the Certificate Import Wizard, a welcome message will be displayed from the wizard for importing certificates. Click Next.

8.    In the following screen, click Browse and select the CollectServer.cer file created in step 3. Click Next.

9.    Next, the location where the digital certificate will be stored is displayed. By default, the digital certificate will be imported to the certificate store named Trusted Root Certification Authorities. Click Next.

10. Lastly, a window will be displayed with information on the digital certificate that will be imported and the location where it will be stored. Click Finish.

11. Once imported, a window indicating that it was imported successfully will be displayed. Click OK.