IIS,SSL和我的本地机器。 [英] IIS, SSL and my local machine.
本文介绍了IIS,SSL和我的本地机器。的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!
问题描述
我真的希望这是回答这个问题的地方。
我在笔记本电脑上编写一个网络项目。我需要编写一些代码,这些代码将涉及应用程序的付款部分的https。
但是,我找不到在XP Professional中创建新网站的方法,只有子网站。另外,我似乎无法让https与我的笔记本电脑上的IIS一起使用
。
我试过给我的机器一个静态IP,但这没用。
你是怎么做到的?
谢谢。
I really hope this is the place to go for an answer to this question.
I am coding a web project on my laptop. I need to write some code that will involve https for the payment part of the app.
However, I can''t find a way to create a new website in XP Professional, only subwebs. Also, I can''t seem to get https to work with
the IIS on my laptop too.
I tried giving my machine a static IP, but that did not work.
How do you do this?
Thanks.
推荐答案
由于Windows XP不是服务器操作系统,因此您只能拥有一个1个网站。如果您需要更多,则需要更改为服务器操作系统(Windows Server 2003,Windows 2000)
对于SSL(https);在网站上安装证书后,您可以更改站点的SSL端口。您有两种创建和安装证书的选项。您可以使用自己的Cetificate Services生成证书,也可以使用受信任的第三方权限。使用证书服务时,您可以管理证书创建,到期和吊销过程。通过受信任的第三方权限创建证书时,您可以让受信任的权限机构进行证书创建,过期和撤销过程。无论哪种方式,您需要执行,创建和安装证书的基本任务如下:
1.创建证书申请。如果希望SSL正常工作,则Web服务器上托管的每个网站都需要单独的证书。证书创建过程的第一步是生成证书请求。您可以通过完成以下步骤生成证书请求
1.在IIS管理单元中,右键单击您的站点并选择属性
2.从目录安全性选项卡,选择服务器证书。这将启动Web服务器证书向导。单击下一步
3.单击创建新证书,然后单击..
4.再次单击下一步..
5.下一步填写证书名称并选择位长。这个名字应该是描述性的。 bit legnth设置公钥和私钥的加密密度。在大多数情况下,您应该选择最高的。 HIT NEXT
6.在提供的字段中输入您的组织信息。 blah bal
7.输入您的计算机名称,应该已经存在
8.输入您公司的地理信息。打到下一个! (不要使用缩写。
9.选择存储证书申请文件的地点
10.点击下一步完成然后完成请求生成过程
现在您必须将其提交给第三方管理局,例如En-Trust,Equifax,Valicert或Verisign。证书=签署请求将存储为您指定的ASCII文本。大多数证书颁发机构(CAs)您是否已经提交了crticiate请求,作为正式网站注册过程的一部分。在注册过程中,您将被要求通过电子邮件或在线表单提交rquest文件。使用电子邮件时,您只需简单地提交请求电子邮件并发送。如果使用在线表格,您必须复制文件的整个文本并将其传递到表格
CA审核后,yoru证书请求如果CA批准了rquest,您将收到附有签名证书的电子邮件,或者拒绝您的请求。 r访问您可以检索签名证书的位置的通知。 Ther verificat是一个ASCII文本文件,您可以在记事本中查看,它只能使用您生成的私有密钥进行解密。完成所有操作后,请问我如何安装它
Since Windows XP isn''t a server opperating system, you can only have one 1 website. If you want more you need to change to a server opperating system (Windows Server 2003, Windows 2000)
For SSL (https); Once you install a certificate on a Web Site, you can change the SSL port for the site. You have two options for creating and installing certificates. You can use your own Cetificate Services to generate your certificates or you can use a trusted third-party authority. When you use Certificate Services, you manage the certificate creation, expiration, and revocation process. When you create certificates through trusted third-party authorities, you let the trusted authority mangae the certificate creation, expiration, and revocation process. Either way, the basic tasks you need to preform, create, and install a certificate are as follows
1. Create a certificate request. Each web site hosted on your Web server needs a seperate certificate if you want SSL to work properly. The first step in the certificate creation process is to generate a certificate request. You can generate a certificate request by completing the following steps
1. In the IIS snap-in, right click your site and select properties
2. Fromt he Directory Security tab, select Server Certificate. This starts the Web Server Certificate Wizard. Click Next
3. Click "Create a new Certificate", Next..
4. Click next again..
5. Next Fill in the certificate name and select a bit length. THe name should be descriptive. The bit legnth sets the encryption strneght of your public and private keys. In most cases you should select the highest you can. HIT NEXT
6. Enter your organization information in the fields provided. blah bal
7. Type your computers name, should be there already
8. Enter the geographic information for you company. hit next! (Dont use abbreviations.
9. Selcect a spot to store your certificate request file
10. click next and finish then your done with the request generation process
Now you have to submit it to a third party Authority such as En-Trust, Equifax, Valicert or Verisign. THe certificat=signing requerst is stored as ASCII text int he fiel you specified. Most Certificate Authorities (CAs) have you submit the crticiate request as a part of a formal site registration process. In theis registration process, you''ll be asked to submit the rquest file ina n email or though an online form. WHen using email you simply attqach the requts fiel to the email and send it. WHe using an online form you must copy the entire text of the file and past it to the form
After the CA review yoru certificate request the ca will either approce or decline your request. If the CA approvces the rquest you will recive an email with the signed certificate attached or a notice to visit a location where you can retrieve the signed certificate. Ther verificat is an ASCII text file that you can view in Notepad, and it can onlyb e decryped with the privat key you generated perviosly. Once you get all that done, ask me how to install it
http://www.thawte.com/ucgi/gothawte....80134407027000
Alex,
感谢您抽出宝贵时间撰写如此丰富的回复。
我已经安装了证书是从我们的域CA发出的。我已经在我们的qa服务器上工作了以及
我们的生产服务器(只是一个测试,直到我们得到我们的真实证书)。它可以通过互联网和本地工作。
我的问题是,一旦我在计算机上安装了证书,我就无法使用https访问本地Web服务器上的站点。我的b $ b甚至给了我的笔记本电脑一个固定的IP并在DNS中注册。即使我使用计算机的固定名称而不是本地主机
它也行不通。
我创建了三个不同的证书,使用localhost,NetBIOS名称和机器的FQDN。我无法让他们中的任何人工作。
为了让这个工作起来我还有别的办法吗?
谢谢。
" Alex Egg" <例如**** @ verizon.net>在消息新闻中写道:10 ********************************** @ microsof t.com ...
Alex,
Thanks for taking the time to write such an informative response.
I have already installed a certificate that was issued from our domain CA. I already have it working on our qa server as well as
our production server (just a test until we get our "real" certificate). It works over the internet as well as locally.
My problem is that once I have the cert installed on my computer, I cannot access the site on the local web server using https. I
have even given my laptop a fixed ip and registered it in DNS. Even when I use the fixed name of the computer instead of local host
it will not work.
I created three different certificates, using localhost, the NetBIOS name and the FQDN of the machine. I could not get any of them
to work.
Is there something else I have to do to get this to work?
Thanks.
"Alex Egg" <eg****@verizon.net> wrote in message news:10**********************************@microsof t.com...
由于Windows XP不是服务器操作系统,因此您只能拥有一个1个网站。如果您需要更多,则需要更改为
服务器操作系统(Windows Server 2003,Windows 2000)。
对于SSL(https);在网站上安装证书后,您可以更改站点的SSL端口。
创建和安装证书有两个选项。您可以使用自己的Cetificate服务生成证书,也可以使用
可信任的第三方权限。使用证书服务时,您可以管理证书创建,到期和撤销
流程。当您通过受信任的第三方机构创建证书时,您可以让受信任的机构使用证书来创建,过期和撤销过程。无论哪种方式,您需要执行,创建和安装证书所需的基本任务如下:
1.创建证书申请。如果您希望SSL正常工作
,则Web服务器上托管的每个网站都需要单独的证书。证书创建过程的第一步是生成证书请求。您可以通过完成以下步骤生成证书
请求。 1.在IIS管理单元中,右键单击您的站点并选择属性。
2.从目录安全性选项卡中,选择服务器证书。这将启动Web服务器证书向导。单击下一步。
3.单击创建新证书,然后单击...
4.再次单击下一步...
5.下一步填写证书名称并选择一下长度。这个名字应该是描述性的。 bit legnth设置公钥和私钥的
加密密度。在大多数情况下,您应该选择最高的。点击下一步。 6.在提供的字段中输入您的组织信息。 blah balh
7.输入您的计算机名称,应该已经存在。
8.输入您公司的地理信息。打到下一个! (不要使用缩写。)
9.选择一个位置来存储您的证书申请文件。
10.点击下一步完成,然后完成请求生成过程。
现在您必须将其提交给第三方机构,如En-Trust,Equifax,Valicert或Verisign。 certificat =签名
requerst存储为您指定的ASCII文本int。大多数证书颁发机构(CA)都会在正式的网站注册过程中提交crticiate请求
。在注册过程中,您将被要求在电子邮件或在线表格中提交rquest文件。使用电子邮件时,您只需将需求链接到电子邮件并发送即可。如果您使用在线
表格,则必须复制该文件的全部文本并将其传递给表格。
在CA审核yoru证书申请后,ca将会处理或拒绝您的请求。如果CA批准rquest
,您将收到附有签名证书的电子邮件或访问您可以检索签名的
证书的位置的通知。 Ther verificat是一个ASCII文本文件,您可以在记事本中查看,它只能通过perviosly生成的
私有密钥进行解密。完成所有操作后,请问我如何安装。
Since Windows XP isn''t a server opperating system, you can only have one 1 website. If you want more you need to change to a server opperating system (Windows Server 2003, Windows 2000).
For SSL (https); Once you install a certificate on a Web Site, you can change the SSL port for the site. You have two options for creating and installing certificates. You can use your own Cetificate Services to generate your certificates or you can use a
trusted third-party authority. When you use Certificate Services, you manage the certificate creation, expiration, and revocation
process. When you create certificates through trusted third-party authorities, you let the trusted authority mangae the certificate
creation, expiration, and revocation process. Either way, the basic tasks you need to preform, create, and install a certificate are
as follows:
1. Create a certificate request. Each web site hosted on your Web server needs a seperate certificate if you want SSL to work properly. The first step in the certificate creation process is to generate a certificate request. You can generate a certificate
request by completing the following steps. 1. In the IIS snap-in, right click your site and select properties.
2. Fromt he Directory Security tab, select Server Certificate. This starts the Web Server Certificate Wizard. Click Next.
3. Click "Create a new Certificate", Next...
4. Click next again...
5. Next Fill in the certificate name and select a bit length. THe name should be descriptive. The bit legnth sets the encryption strneght of your public and private keys. In most cases you should select the highest you can. HIT NEXT. 6. Enter your organization information in the fields provided. blah balh
7. Type your computers name, should be there already.
8. Enter the geographic information for you company. hit next! (Dont use abbreviations.)
9. Selcect a spot to store your certificate request file.
10. click next and finish then your done with the request generation process.
Now you have to submit it to a third party Authority such as En-Trust, Equifax, Valicert or Verisign. THe certificat=signing requerst is stored as ASCII text int he fiel you specified. Most Certificate Authorities (CAs) have you submit the crticiate request
as a part of a formal site registration process. In theis registration process, you''ll be asked to submit the rquest file ina n
email or though an online form. WHen using email you simply attqach the requts fiel to the email and send it. WHe using an online
form you must copy the entire text of the file and past it to the form.
After the CA review yoru certificate request the ca will either approce or decline your request. If the CA approvces the rquest you will recive an email with the signed certificate attached or a notice to visit a location where you can retrieve the signed
certificate. Ther verificat is an ASCII text file that you can view in Notepad, and it can onlyb e decryped with the privat key you
generated perviosly. Once you get all that done, ask me how to install it.
这篇关于IIS,SSL和我的本地机器。的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
查看全文
