In this example we are going to generate a self-signed certificate that will be valid for ten years using PowerShell as Administrator user.

In this example the server has a hostname „testserver-01“ and we will use „3dfindit-testserver-01“ as a friendly name. For a friendly name you can add anything you want or use something a bit descriptive so that you can easily find your certificate if there are more of them for the same host. The local server user is „root“.

The certificate is created on the server. In the case of a manual creation, permissions have to be added to the certificate for local server user that will access the AppServer.

Next step is to export the created certificate and import it in the server's "Local Computer\Trusted Root Certification" store, and distribute the exported certificate to the clients and import the certificate in the same location as server's, meaning Local Computer\Trusted Root Certification store.