In View 5.1 and later, you configure certificates for View by importing the certificates into the Windows local computer certificate store on the View server host.

Before you can import a certificate, you must generate a Certificate Signing Request (CSR) and obtain a valid, signed certificate from a CA. If the CSR is not generated according to the example procedure described in this scenario, the resulting certificate and its private key must be available in a PKCS#12 (formerly called PFX) format file.

There are many ways to obtain SSL certificates from a CA. This scenario shows how to use the Microsoft certreq utility to generate a CSR and make a certificate available to a View server. You can use another method if you are familiar with the required tools, and they are installed on your server.

Use this scenario to solve the following problems:

• You do not have SSL certificates that are signed by a CA, and you do not know how to obtain them
• You have valid, signed SSL certificates, but they are not in PKCS#12 (PFX) format

If your organization provides you with SSL certificates that are signed by a CA, you can use these certificates. Your organization can use a valid internal CA or a third-party, commercial CA. If your certificates are not in PKCS#12 format, you must convert them. See Convert a Certificate File to PKCS#12 Format.

When you have a signed certificate in the proper format, you can import it into the Windows certificate store and configure a View server to use it. See Set Up an Imported Certificate for a View Server.