Installing the CA Certificate

Install the root CA certificate (rsa_client.crt) on the Web server machine to enable the Web server to trust the Web site certificate installed on the IIS Web site.

Install the root CA certificate in the Trusted Root Certification Authorities store on the Web server machine (this is the rsa_client.crt file that you created in the Generating Client-Side Certificate step). This enables the Web server to trust the Web site certificate installed on the IIS Web site.

Install the root CA certificate into the Web server certificate store:

  1. Click Start > Run, and enter mmc. Click OK.
  2. In the Console1 window, select File > Add/Remove Snap-in.
  3. In the Add/Remove Snap-in dialog, click Add.
  4. In the Add Standalone Snap-in dialog, select Certificates, and click Add.
  5. On the Certificates snap-in page, select Computer account, and click Next.
  6. On the Select Computer page, select Local computer, and click Finish.
  7. Click Close, and then OK.
  8. Import the certificates:
    1. Expand the Certificates node, and then expand the Trusted Root Certification Authorities node.
    2. Right click Certificates, select All Tasks, and click Import.
  9. Click Next on the Welcome to the Certificate Import Wizard page.
  10. On the File to Import page, click Browse, and specify the rsa_client.crt file path. This is the rsa_client.crt file that you created in the Generating Client-Side Certificate step.
    Client Properties – Secure Communications Client Security 2
    Click Next.
  11. On the Certificate Store page, accept the default setting, Place All Certificates In The Following Store, and click Next.
  12. Click Finish on the Completing the Certificate Import page.
  13. Click OK in the Certificate Import Wizard dialog box informing you that the import was successful.
Parent topic: Client-Side Certificates