Meraki

Community

Active Directory Self Signed SSL Certificate

Solved
GregMi
Conversationalist
‎Jan 23 2021 8:52 PM
‎Jan 23 2021 8:52 PM

Active Directory Self Signed SSL Certificate

I've been having some issues with creating a self-signed certificate.  I tried using IIS and it created everything correct except the extended key usage setting it is missing "ClientAuth" it seems to have everything else.  I also tried using OpenSSL but not having luck creating anything but V1 certificates.  Everything I can find refers to the directions for sending off a CSR.  I'm using this for a small business so they can use AD Auth for their VPN.  I'd also like to find something that is signed for a longer time than 1 year if possible but with creating the cert via IIS I couldn't find anyway to extend that?  Any help would be greatly appreciated this is not something I work with very often.

0 Kudos
1 Accepted Solution
CptnCrnch
Kind of a big deal
‎Jan 24 2021 10:35 AM
‎Jan 24 2021 10:35 AM

For „quick and dirty“ certificates without too much background, you could take a Look at xCA: https://hohnstaedt.de/xca/

View solution in original post

2 Replies 2
CptnCrnch
Kind of a big deal
‎Jan 24 2021 10:35 AM
‎Jan 24 2021 10:35 AM

For „quick and dirty“ certificates without too much background, you could take a Look at xCA: https://hohnstaedt.de/xca/

In response to CptnCrnch
GregMi
Conversationalist
‎Feb 1 2021 8:09 PM
‎Feb 1 2021 8:09 PM

That was super easy to follow and use, the cert is up and running now.  Still can't connect but I think that may be a different issue.  Continuing to troubleshoot that.  Thanks for the suggestion on this!

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.