Requesting a certificate signed by a certificate authority

To ensure Secure Sockets Layer (SSL) communication, servers require a personal certificate that is signed by a certificate authority (CA). You must first create a personal certificate request to obtain a certificate that is signed by a CA. For example, when the external community is Microsoft Lync AND the IBM® Sametime® Gateway Server consists of more than one local domain.

About this task

Complete one of these two procedures according to your deployment. Some external communities may require that the Sametime Gateway certificate has a SAN entry, therefore you need to determine which option is preferable.
  1. Issuing a certificate request
    Create a personal certificate request to obtain a certificate that is signed by a certificate authority.
  2. Issuing a SAN entry certificate request
    Issue a unique certificate request, which consists of the Subject Alternative Names (SAN) of one or more entries when an encrypted (TLS) federation with an external community requires it. For example, when the external community is Microsoft Lync AND the IBM Sametime Gateway Server consists of more than one local domain.
Parent topic: Setting up SSL on a single server
Previous topic: Adding trust for certificate authorities used by external communities
Next topic: Importing any intermediate CA certificates into the keystore