SELFSSL

I’ve never gotten the hang of self-signed SSL certificates for testing purposes and internal use on Microsoft IIS. I did some searching this week and found a utility called SELFSSL that’s part of the Microsoft IIS 6.0 resource kit. SelfSSL creates a self-signed cert, lets you set the host name, expiration and bit length.

I used it to secure an internal application server — since it’s not used by the outside world, I don’t need to worry about the warnings that a self-signed cert will generate.

We’re working with Group Policies in my network, we’ve added a policy to place our local servers into the intranet sites security group in IIS. With a little bit of effort, we should be able to place a self-signed cert into the certificate store via GPO.