Once installed, launch the “SelfSsl” tool from Start -> All Programs -> IIS Resources -> SelfSSL -> SelfSSL.
A command prompt window will appear. A self signed certificate can be generated from here. Enterprise Tester is normally associated with the default website, so in most cases a certificate can be generated by issuing the command:
Note that this will create a certificate which expires by default after 7 days. The certificate expiry can be changed to one year i.e. 365 days by using the following command line:
Press “Y” when prompted to set or replace the certificate. A self signed certificate should now be created.
Forcing use of HTTPS
The use of a secure channel (i.e. disabling HTTP) can be enforced by changing the Directory Security options of the “EnterpriseTester” website in IIS.
Enforcing a secure channel is optional. To support both HTTP and HTTPS, omit the following steps:
Launch IIS Manager (Control Panel -> Administrative Tools -> Internet Information Services (IIS) Manager.
Locate the “EnterpriseTester” application (it should be under the “Default Website” site node).
Right click and select “Properties…” from the context menu.Configuring-Et-For-Ssl V1.0
Navigate to the “Directory Security” tab.
Click on the “Edit…” button.
Click the “Require secure channel” check box, then click “OK” to save the changes to these settings.
For self-signed certificates a “certificate warning” message in the browser may be displayed. This is expected behavior for a self signed certificate. The best way to overcome this issue is use a 3rd party certificate from a trusted Certificate Authority (CA) such as Verisign.
Another side-effect of using a self-signed certificate is that browser’s address bar may show up in red, as per the following screen shot:
You have now completed configuring IIS6 and Enterprise Tester to use HTTPS/SSL.
These instructions apply to both IIS7 and IIS7.5 (as feature in Windows Server 2008r2 & Windows 7)
Generate Self Signed certificate
Unlike IIS6, IIS7 features in-built support for generating Self Signed Certificates.
Go to Control Panel -> System & Security -> Administrative Tools -> Internet Information Services (IIS) Manager.
Click on the “server” node at the top of the tree on the left hand side.
Click on the “Server Certificates” icon.
In the right hand column click on the “Create self-signed certificate…” link.
Enter a “friendly name” for the certificate i.e. “Enterprise Tester”.
Binding the Certificate to the Default Website
Click the “Default Website” node in the left hand tree.
Click on the “Bindings…” link on the right hand side.Configuring-Et-For-Ssl V1.0
Once the bindings dialog has opened, click the “Add” button.
In the “add” dialog, select “https”, then select the self-signed certificate you created earlier.Configuring-Et-For-Ssl V1.0
Click “OK” to save your changes.
Forcing use of HTTPS
You now have HTTPS configured, but can still use unsecured HTTP connections. To disable HTTP for Enterprise Tester all together follow these steps:
Click on the “EnterpriseTester” application node under “Default Website” in the left hand tree.
Click on the “SSL Settings” Icon.
The SSL Settings screen will be displayed.
Click the “Require SSL” checkbox.
Click the “Apply” link on the right hand side to save your changes.
For self-signed certificates a “certificate warning” message may be displayed in the browser – this is expected behavior for a self-signed certificate, the best way to overcome this issue is to use a 3rd party certificate from a trusted Certificate Authority (CA) such as Verisign.