Many Web
sites and computers require secured communication channels for transferring
sensitive data, such as credit card information. Secure Sockets Layer (SSL) is
the most popular and universal solution; it protects information by using
certificates. Windows 2000 Server includes its own certificate server, which
can dramatically lower your costs compared to third-party solutions.

To install
the Certificate Authority on your Windows 2000 Server, follow these steps:

  1. Open
    Control Panel and run Add/Remove Programs.
  2. Click
    Add/Remove Windows Components.
  3. In
    the Windows Components Wizard, select the Certificate Services check box, and
    read the dialog box that appears. Click Yes if you agree and understand the
    message, then click Next.
  4. Click
    Next in the Terminal Services Setup dialog box.
  5. On
    the Certification Authority Type, select Stand-alone CA if your computer is not
    part of a domain, or choose Enterprise Root CA, and then click Next.
  6. Enter
    the requested information in the next dialog box and click Next.
  7. In
    the subsequent dialog box, verify the storage location for configuration data,
    and click Next.
  8. Insert
    the Windows 2000 Server CD at the prompt.

When installation
completes, you’ll find a Certificate Authority console in the Administrative
Tools folder. If your server is running IIS, you’ll also find the CertSrv
virtual folder installed. This Web site can be used to request and retrieve a
certificate, retrieve CRL, or check on pending certificates.

Miss a column?

Check out the Windows 2000 Server archive, and catch up on the most recent editions of Jim Boyce’s column.

Want more Win2K tips and tricks? Automatically sign up for our free Windows 2000 Server newsletter, delivered each Tuesday!