In order to create certificates for AppsAnywhere, Cloudpaging and Parallels RAS services, a certificate request (csr) will need to be generated, one for each service url.

Alternatively a single wildcard certificate can be used for all services. In this case the request would be for the domain part of the service URLs e.g. *.uni.edu

The process to generate a certificate request will vary with each institution, but there will be someone responsible who can verify the process.

As an example, requests can be generated using OpenSSL:

  1. Connect to a machine with OpenSSL installed via RDP
  2. Create a folder (e.g. on the desktop) where the csr will be stored
  3. Open the folder, select the address bar, type cmd and press enter to open a command prompt switched to that directory
  4. Run the command to generate the csr and key. The following is an example using open SSL with Zend server:
    openssl.exe req -out AppsAnywhere.csr -new -newkey rsa:2048 -nodes -keyout AppsAnywhere.key -config "C:\Program Files (x86)\Zend\Apache24\conf\openssl.cnf"
    PHP

  5. Enter all of the details for the certificate. These should be verified internally within your organisation e.g:
    • Country Name (GB)
    • State/Province Name (County)
    • Locality Name (City)
    • Organisation Name (Institution Name)
    • Organisational Unit (Department)
    • Common Name (URL that will be used to access the service - e.g. appsanywhere.uni.edu)
    • Email Address (Technical Contact E-mail)
    • A challenge/key password (LEAVE BLANK - just press enter)
    • (Optional) Company Name - (Same as Organisation Name)
  6. At this point,a .csr file and a .key file will be created in the folder (most likely a .rnd file too, that can be ignored)
  7. Take a copy of these files and save them securely in the Software2 share, or one of the servers
  8. Repeat steps 4-7 for the Cloudpaging server and Parallels RAS URLs (e.g. cloudpaging.uni.edu and parallels.uni.edu)

Submit the certificate request

A signed SSL certificate will now need to be requested using each certificate request (csr) created. This process will also vary with each institution and should be verified internally.