Topics Map > Services > Security > Server Registration

Server Registration - Secure your server with a free GlobalSign Certificate

Generate a Certificate Signing Request (CSR) and install a certificate for your server (Not every server architecture is going to work with these directions, please follow the directions for requesting a CSR and Installing a certificate for your particular system)

Windows

  1. Create inf file - C:\software\certs\reqInstructionFile.inf
  2. File Contains:
    [Version]
    Signature="$Windows NT$"
    [NewRequest]
    Subject = "CN=SERVERNAME.ndsu.edu, O=North Dakota University
    System, OU=NDSU, L=Fargo, S=North Dakota, C=US, E=cert-
    YOUREMAILADDRESS@ndsu.edu
    KeySpec = 1
    KeyLength = 2048
    Exportable = TRUE
    MachineKeySet = TRUE
    SMIME = False
    PrivateKeyArchive = FALSE
    UserProtected = FALSE
    UseExistingKeySet = FALSE
    ProviderName = "Microsoft RSA SChannel Cryptographic Provider"
    ProviderType = 12
    RequestType = PKCS10
    KeyUsage = 0xa0
    [EnhancedKeyUsageExtension]
    OID=1.3.6.1.5.5.7.3.1 ;this is for Server Authentication
  3. To generate the CSR:
    1. Open an elevated command Prompt:
    2. cd \software\certs
    3. certreq -new reqInstructionFile.inf nameofserverYYYYMMDD.req
    4. Send CSR to IT Security Office
  4. The Security Office will process your request and GlobalSign will send you a certificate
  5. To install the certificate
    1. Copy the certificate to c:\software\certs\nameofserverYYYYMMDD.crt
    2. Open an elevated command prompt
    3. cd \software\certs
    4. certreq -accept nameofserverYYYYMMDD.crt
  6. This should have your new certificate installed on your computer.

Open SSL for linux Servers

  1. Open a terminal window
  2. Use elevation procedure
  3. openssl -req -sha256 -newkey rsa:2048 -keyout
    nameofserver.ndsu.nodak.edu.key.enc -out
    nameofserver.ndsu.nodak.edu.csr
    • Country Code: US
    • State: North Dakota
    • Locality: Fargo
    • Organization Name: North Dakota State University
    • Organizational Unit Name: Department Name
    • Common Name: nameofserver.ndsu.nodak.edu
    • Email Address: Address of Contact
  4. Sent resulting CSR to the IT Security Office
  5. The Security Office will process your request and GlobalSign will send you a certificate
  6. Install the certificate according to the directions for the server that you are installing




Keywords:security, register, servers   Doc ID:99075
Owner:Marisa M.Group:Information Technology Division
Created:2020-03-18 15:01 CDTUpdated:2020-06-01 11:21 CDT
Sites:Information Technology Division
Feedback:  0   0