Views:
  1. Open a browser and log in to “http://<AD CS IP or FQDN>/certsrv”.
  2. Choose Request a certificate.

    Request a certificate

  3. Click Advanced certificate request.

    Advanced certificate request

  4. Click Submit a certificate request by using a base-64-encoded CMC or PKCS #10 file, or submit a renewal request by using a base-64-encoded PKCS #7 file.

    Submit a certificate request

  5. Open certrequest.csr file and copy all its content to Base-64-encoded certificate request (CMC or PKCS #10 or PKCS #7): field, then click Submit.

    Open certrequest.csr file

    Open certrequest.csr file

  6. Go to Control Panel > Administrative Tools, and launch Certification Authority.
  7. Click Pending Requests folder and navigate to Issue request ID 2.

    Go to Pending Requests

  8. Back to browser, click Home on the first page, and then click Download a CA Certificate, certificate chain or CRL.

    Download a CA Certificate, certificate chain or CRL

  9. Click Download CA certificate. It will download the certnew.cer file.

    certnew.cer file

  10. Export the root CA. Otherwise, CA should provide you the root CA certificate (e.g. rootCA.cer).
  11. Copy the certnew.cer and rootCA.cer files to C:\ProgramFiles\Trend Micro\Deep Security Manager\jre\bin.
Keywords: certrequest, request for ca certificate