Step 4: Exporting the SSL Certificate for the RD Gateway Server

  • Article

Applies To: Windows Server 2008 R2

When you export the certificate, ensure that you export the private key. If this option is not available for the certificate that you have selected, you must obtain a new certificate for the Forefront TMG server.

Perform the following procedure on the RD Gateway server, RDG-SRV, to export the SSL certificate for the RD Gateway server and copy it to the Forefront TMG server, TMG-SRV.

To export the SSL certificate for the RD Gateway server and copy it to the Forefront TMG Server

  1. Log on to RDG-SRV as CONTOSO\Administrator.

  2. On the RD Gateway server, open the Certificates snap-in console as follows:

    1. Click Start, click Run, type mmc, and then click OK.

    2. On the File menu, click Add/Remove Snap-in.

    3. In the Add or Remove Snap-ins dialog box, in the Available snap-ins list, click Certificates, and then click Add.

    4. In the Certificates snap-in dialog box, click Computer account, and then click Next.

    5. In the Select Computer dialog box, click Local computer: (the computer this console is running on), and then click Finish.

    6. In the Add or Remove snap-ins dialog box, click OK.

  3. In the Certificates snap-in console tree, expand Certificates (Local Computer), expand Personal, and then click Certificates.

  4. Right-click the certificate RDG-SRV.contoso.com, point to All Tasks, and then click Export.

  5. On the Welcome to the Certificate Export Wizard page, click Next.

  6. On the Export Private Key page, click Yes, export the private key, and then click Next.

  7. On the Export File Format page, ensure that Personal Information Exchange - PKCS #12 (.PFX) is selected, select the Include all certificates in the certification path if possible check box, and then click Next.

  8. On the Password page, type password, confirm the password, and then click Next.

  9. On the File to Export page, in the File name box, click Browse.

  10. In the Save As dialog box, in the File name box, enter RDG-SRV, and then click Save.

  11. On the File to Export page, click Next.

  12. On the Completing the Certificate Export Wizard page, confirm that the correct certificate is specified, that Export Keys is set to Yes, and that Include all certificates in the certification path is set to Yes, and then click Finish.

  13. After the certificate export has successfully completed, a message appears confirming that the export was successful. Click OK.

  14. Close the Certificates snap-in.

  15. Copy the RD Gateway server certificate c:\users\administrator.CONTOSO\Documents\RDG-SRV.pfx, to the Forefront TMG Server (TMG-SRV).

You have exported the certificate, and the private key on the RD Gateway server and copied it to Forefront TMG server. Now you can proceed to Step 5: Importing the SSL Certificate on the Forefront TMG Server.