Article ID: 928146
Article Last Modified on 12/11/2006
APPLIES TO
- Microsoft Office Groove Server 2007 Data Bridge
INTRODUCTION
This article describes how to create and to import certificates for use by Microsoft Office Groove Data Bridge Server 2007.
MORE INFORMATION
How to create a certification authority on a computer that is running Microsoft Windows Server 2003
- Click Start, click Run, type appwiz.cpl, and then click OK.
- Click Add/Remove Windows Components.
- Click Certificate Services. You receive the following message:
- If you are sure that the computer name and the domain membership do not have to be changed, click Yes, and then click Next.
- Click Stand-alone root CA, and then click Next.
- Enter the information in the Common name for this CA field and in the Validity period field, and then click Next.
- Enter locations for the certificate database, the database log, and the configuration information, and then click Next.
Alternatively, click Next to accept the default values. - Click Yes when you receive the following message:
- When you are prompted for the Windows Server 2003 installation files, provide a source for the files to complete the installation.
- Click Finish.
How to use the certificates on the server that is running Data Bridge Server 2007
- Download and then import a certification authority certificate to the Data Bridge Server 2007 server. To do this, follow these steps:
- In Internet Explorer, visit the following Web site:
http://
ComputerName
/certserv - Click Download a CA certificate, certificate chain or CRL.
- Open the certificate, and then click Install certificate.
- Click Next.
- Click Place all certificates in the following store, and then click Browse.
- Click Show physical stores, expand Trusted Root Certification Authorities, click Local Computer, and then click OK.
- Click Next, and then click Finish.
- In Internet Explorer, visit the following Web site:
- Request a certificate to export to the Data Bridge Server 2007 server. To do this, follow these steps:
- In Internet Explorer, visit the following Web site:
http://
ComputerName
/certserv - Click Request a certificate.
- Click advanced certificate request, and then create a request to this certification authority by clicking to select the following check boxes:
- Mark keys as exportable
- Enable strong private key protection
- Click Yes when you receive the following message:
- Click OK.
- On the Certificate Issued page, click Install this certificate.
- In Internet Explorer, click Internet Options on the Tools menu, and then click the Content tab.
- Under Certificates, click Certificates, locate and then click the certificate that you installed, and then click Export.
- In the Certificate Export Wizard, click Yes, export the private key, and then click Next.
- Create a name for the file. You may want to use the same name as the certificate name. The certificate name must match the member name that you will create later in Groove Management Server. Additionally, when you use the same name for the file, the file will be easier to associate with the correct certificate.
Accept the defaults for other values. - Click OK. The exported certificate appears on the desktop. To use the certificate, you must import it to the Data Bridge Server 2007 server. To do this, go to step 3.
- In Internet Explorer, visit the following Web site:
- Import the certificate to the Data Bridge Server 2007 server. To do this, follow these steps:
- Start Microsoft Management Console.
- On the File menu, click Add/Remove Snap-in.
- Click Add.
- In the Add Standalone Snap-ins dialog box, click Certificates, and then click Add.
- Click Computer account, and then click Next.
- Click Local Computer, and then click Finish.
- Click OK, and then click Close.
- From Console Root, expand Certificates (Local Computer), right-click Personal, point to All tasks, and then click Import.
- Click Next.
- Click Browse, locate and then click the certificate, and then click Open.
- Click Next.
- Click Place all certificates in the following store, click Browse, click Personal, and then click Next.
- Click Finish.
Note After you have successfully exported and imported the certificate, you can remove the certificate. To do this, follow these steps:- In Internet Explorer, click Internet Options on the Tools menu.
- Click the Content tab, and then click Certificates.
- Select the certificate that you want to remove, and then click Remove.
- Create a managed Groove domain identity that can run Data Bridge Server 2007 as a service. To do this, follow these steps:
- In Internet Explorer, visit the following Web site:
http://
ServerName
/gms - Expand the Groove domain that will use the certificate.
- In the domain, click Members.
- On the Members tab, click Add Members.
- Click Add Single Member, and then click Next.
- In the Select Member Settings dialog box, click Next.
- In the Add Single Member dialog box, enter the required information, and then click Finish to create the member.
Note You may want to use an administrative address for the e-mail address so that workspace managers can obtain a point of contact from the member properties.
Data Bridge Server 2007 can now run as a service.
- In Internet Explorer, visit the following Web site:
Keywords: kbexpertiseadvanced kbhowto KB928146