Xerox SmartSend Support & Software Installation Guide
2-16
Prepare for Installation
Obtain and Install a Security Certificate
Skip this section if secure password entry and communication is not required.
A security certificate may be obtained by submitting a certificate request to a Certificate Authority (CA) and
installing the returned certificate. This section assumes that Microsoft Certificate Services is installed on a
computer within a network domain, with the role of Root CA. It includes the processes of creating the
request file and submitting it to a certificate server. The examples and procedures in this section may vary
with other configurations and certificate services. For detailed information on related SMARTsend security
issues and secure configuration options, please refer to HTTPS/SSL Certificates on page 9-3.
installing the returned certificate. This section assumes that Microsoft Certificate Services is installed on a
computer within a network domain, with the role of Root CA. It includes the processes of creating the
request file and submitting it to a certificate server. The examples and procedures in this section may vary
with other configurations and certificate services. For detailed information on related SMARTsend security
issues and secure configuration options, please refer to HTTPS/SSL Certificates on page 9-3.
The following information will be required as you obtain the certificate:
The "friendly" name of the new certificate. This is a short, easily recognizable name like "Scanning
Computer."
Computer."
The bit length of the encryption key. Longer keys are more secure; shorter keys have less impact on
performance.
performance.
The "common name" of the site being secured. This is either the fully qualified DNS name or
NetBIOS name. Sites that appear on the Internet should use the fully qualified DNS name.
NetBIOS name. Sites that appear on the Internet should use the fully qualified DNS name.
Location information. This includes company, department, city, state, and country.
Preparing a Certificate Request File
To prepare a certificate request file:
The following instructions assume that you have already accessed the IIS management console on the
computer where SMARTsend will be installed.
computer where SMARTsend will be installed.
1
Right-click the IIS Default Web Site or IIS site where SMARTsend is or will be installed. Select
Properties.
Properties.
2
Select the Directory Security tab.
3
Click Server Certificate.
4
The Server Certificate Wizard window appears. Click Next.
5
Select Create a new certificate. Click Next.
6
Select Prepare the request now, but send it later. Click Next.
7
Enter the "friendly" name for the new certificate. Select the bit length if a different bit length is desired.
Click Next.
Click Next.
8
Enter the organization name and unit. Click Next.
9
Enter the site’s common name. Sites on the Internet should use their fully qualified DNS names; local
(intranet) sites may use the computer’s NetBIOS name. Click Next.
(intranet) sites may use the computer’s NetBIOS name. Click Next.
N
OTE
:
A SelfSSL option is available in the Microsoft Internet Information Services (IIS) Resource Kit.
Go to
N
OTE
:
SMARTsend will not be able to function properly under SSL if the Host Name on the
certificate does not match the fully qualified computer name.