Cisco Cisco Expressway
Appendix 5: Configuring Windows Server
Manager with a "client and server" certificate
template
Manager with a "client and server" certificate
template
The default "Web Server" certificate template used by the Microsoft Certification Authority application will
only create a certificate for Server Authentication. The server certificate for the Expressway also needs
Client Authentication if you want to configure a neighbor or traversal zone with mutual authentication (where
TLS verify mode is enabled).
only create a certificate for Server Authentication. The server certificate for the Expressway also needs
Client Authentication if you want to configure a neighbor or traversal zone with mutual authentication (where
TLS verify mode is enabled).
To set up a certificate template with Server and Client Authentication:
1. In Windows, launch Server Manager (
Start > Administrative Tools > Server Manager
).
(Server Manager is a feature included with server editions of Windows.)
2. Expand the
Server Manager
navigation tree to
Roles > Active Directory Certificate Services >
Certificate Templates (<domain>)
.
3. Right-click on Web Server and select
Duplicate Template
.
4. Select Windows Server 2003 Enterprise and click OK.
5. On the
General
tab, enter the Template display name and Template name, for example Web client
and server
and Webclientandserver.
Cisco Expressway Certificate Creation and Use Deployment Guide (X8.5.2)
Page 28 of 32
Appendix 5: Configuring Windows Server Manager with a "client and server" certificate template