Active Directory Self Signed SSL Certificate

SOLVED
GregMi
Conversationalist

Active Directory Self Signed SSL Certificate

I've been having some issues with creating a self-signed certificate.  I tried using IIS and it created everything correct except the extended key usage setting it is missing "ClientAuth" it seems to have everything else.  I also tried using OpenSSL but not having luck creating anything but V1 certificates.  Everything I can find refers to the directions for sending off a CSR.  I'm using this for a small business so they can use AD Auth for their VPN.  I'd also like to find something that is signed for a longer time than 1 year if possible but with creating the cert via IIS I couldn't find anyway to extend that?  Any help would be greatly appreciated this is not something I work with very often.

1 ACCEPTED SOLUTION

Accepted Solutions
CptnCrnch
Kind of a big deal

Re: Active Directory Self Signed SSL Certificate

For „quick and dirty“ certificates without too much background, you could take a Look at xCA: https://hohnstaedt.de/xca/

View solution in original post

2 REPLIES 2
CptnCrnch
Kind of a big deal

Re: Active Directory Self Signed SSL Certificate

For „quick and dirty“ certificates without too much background, you could take a Look at xCA: https://hohnstaedt.de/xca/

View solution in original post

GregMi
Conversationalist

Re: Active Directory Self Signed SSL Certificate

That was super easy to follow and use, the cert is up and running now.  Still can't connect but I think that may be a different issue.  Continuing to troubleshoot that.  Thanks for the suggestion on this!

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.