2. Click on File and select New Certificate.
Create a personal Root Certificate:
This option lets you create a self-signed CA certificate. The private key will be generated and stored in User.pkr, and the certificate will be stored in User.scl.
Just remember, when choosing this option it means that your certificate is not signed by a Certificate Authority CA and therefore outsiders' browsers etc. will tell them that your Digital Certificate has not been signed by a known CA and therefore they may decide not to use your server.
Create a personal Certificate, signed by a personal Root Certificate:
This option lets you create a certificate signed by one of your own private keys. The private key associated with the new certificate will be generated and stored in User.pkr, and the certificate will be stored in User.scl.
Just remember, when choosing this option it means that your certificate is not signed by a Certificate Authority CA and therefore outsiders' browsers etc. will tell them that your Digital Certificate has not been signed by a known CA and therefore they may decide not to use your server.
Create a Certificate Request:
This option lets you create a certificate request to be exported and signed by an external CA. The private key associated with the new certificate will be generated and stored in User.pkr. The request will be exported in PKCS#10 format. When using this option you must already have imported the certificate of the CA you intend to send the request to, since CertMgr (to some extent) will verify that the information you enter is consistent with the constraints imposed by that CA.
Create a Certificate from a Certificate Request:
This option lets you create a certificate from a certificate request sent to you by someone else. The certificate will be store in Issued.scl. One of your CA certificates will be used for the signature. You will not need access to the private key associated with the certificate, but it is crucial that you use some out-of-band methods to confirm that the entire request including all of the information it contains is authentic.
Advanced
Allows you to generate a custom certificate where all the certificate generation options are available e.g. Server Certificate, Client Certificate, Code Signing Certificate and so on.
CA Certificate
Generate a CA Certificate from which you can sign and generate all your other certificates.
Server Certificate
Generate a Server Certificate to work on SnugServer.
Client Certificate
Generate a Client Certificate to allow users to have their own Digital Certificate active their Web Browser.
Code Signing Certificate
Generate a Code Signing Certificate to sign installation applications etc.
E-mail Signing Certificate
Generate an Email Signing Certificate to allow users to digitally sign emails within the email client e.g. Ms Outlook.
Peer-to-Peer Certificate
Generate a Peer-to-Peer Certificate to work on Peer-to-Peer systems.
3. Click on Create a personal Root Certificate in the Create section and click on CA Certificate in the Wizard section.
4. Complete the above fields to identify your certificate e.g. your Common Name (the server's IP Address or Domain name).
5. Click Next and follow the wizard through to the end.
