What should you do?

Your company named Contoso, Ltd. runs Windows Server 2008 R2.
You manage a Web server named Server1.
Internet users access Server1 by using http://www.contoso.com and https://www.contoso.com.
The Server1 server uses an SSL certificate from a public certification authority (CA).
You install an additional Web server named Server2.
You configure a Network Load Balancing cluster to distribute the incoming HTTP and HTTPS traffic between both Web servers.
You need to configure an SSL certificate on Server2 to support HTTPS connections.
You must ensure that all users can connect to https://www.contoso.com without receiving security warnings.
What should you do?

Your company named Contoso, Ltd. runs Windows Server 2008 R2.
You manage a Web server named Server1.
Internet users access Server1 by using http://www.contoso.com and https://www.contoso.com.
The Server1 server uses an SSL certificate from a public certification authority (CA).
You install an additional Web server named Server2.
You configure a Network Load Balancing cluster to distribute the incoming HTTP and HTTPS traffic between both Web servers.
You need to configure an SSL certificate on Server2 to support HTTPS connections.
You must ensure that all users can connect to https://www.contoso.com without receiving security warnings.
What should you do?

A.
Open the Internet Information Services (IIS) Manager console on Server2. Create a self-signed certificate.

B.
Open the Internet Information Services (IIS) Manager console on Server1. Export the SSL certificate to a .pfx file. Import the .pfx file to Server2.

C.
Open the Certificates snap-in on Server1. Export the SSL certificate to a .cer file. Import the .cer file to Server2.

D.
Request a new SSL certificate from the public CA. Use Server2 as the Common Name in the request. Install the new certificate on Server2.

Explanation:
To export a certificate with the private key
1. Open the Certificates snap-in for a user, computer, or service.
2. In the console tree under the logical store that contains the certificate to export, click Certificates.
3. In the details pane, click the certificate that you want to export.
4. On the Action menu, point to All Tasks, and then click Export.
5. In the Certificate Export Wizard, click Yes, export the private key. (This option will appear only if the private key is marked as exportable and you have access to the private key.)
6. Under Export File Format, do any of the following, and then click Next.
– To include all certificates in the certification path, select the Include all certificates in the certification path if possible check box.
– To delete the private key if the export is successful, select the Delete the private key if the export is successful check box.
– To export the certificate’s extended properties, select the Export all extended properties check box.
7. In Password, type a password to encrypt the private key you are exporting. In Confirm password, type the same password again, and then click Next.
8. In File name, type a file name and path for the PKCS #12 file that will store the exported certificate and private key. Click Next, and then click Finish.
Source: http://technet.microsoft.com/en-us/library/cc754329.aspx



Leave a Reply 0

Your email address will not be published. Required fields are marked *