cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
andejo55
Engaged Sweeper II

See the following article.   Under the certificate section, I'm wondering if anyone has a suggestion on where they've obtained this certificate and instructions on creating it?

https://community.lansweeper.com/t5/scanning-your-network/creating-a-microsoft-cloud-services-applic...

I appreciate any feedback.andejo55_0-1675264229746.png

1 ACCEPTED SOLUTION
Bruce_B
Lansweeper Alumni

If you'd like to use a locally generated certificate, you can follow the procedure below, which makes use of Microsoft's Exchange PowerShell Online documentation

  • Create a certificate using this procedure: https://docs.microsoft.com/en-us/powershell/exchange/app-only-auth-powershell-v2?view=exchange-ps#st...
    • Make sure to remember the password you chose, or use the one in the example.

    • The exported certificates can be found in the Windows\System32 folder

  • Install the private (.pfx) certificate on the local machine (scanning server), and select the personal store. Afterwards, copy & paste the certificate into the trusted root authority as well. 

  • Upload the public (.cer) certificate to your azure portal, under the Certificates & Secrets section for the app that you configured to scan O365V2.

  • Update the certificate thumbprint in your O365v2 scanning credential.

  • Rescan your O365 environment.

Do keep in mind that your security procedures and best practices may involve only using CA-generated certificates.

View solution in original post

2 REPLIES 2
Bruce_B
Lansweeper Alumni

If you'd like to use a locally generated certificate, you can follow the procedure below, which makes use of Microsoft's Exchange PowerShell Online documentation

  • Create a certificate using this procedure: https://docs.microsoft.com/en-us/powershell/exchange/app-only-auth-powershell-v2?view=exchange-ps#st...
    • Make sure to remember the password you chose, or use the one in the example.

    • The exported certificates can be found in the Windows\System32 folder

  • Install the private (.pfx) certificate on the local machine (scanning server), and select the personal store. Afterwards, copy & paste the certificate into the trusted root authority as well. 

  • Upload the public (.cer) certificate to your azure portal, under the Certificates & Secrets section for the app that you configured to scan O365V2.

  • Update the certificate thumbprint in your O365v2 scanning credential.

  • Rescan your O365 environment.

Do keep in mind that your security procedures and best practices may involve only using CA-generated certificates.

Tim_N
Lansweeper Employee
Lansweeper Employee

Hello @andejo55 

This certificate should be a public certificate and not a locally created one. Therefore, the cert will come from your public cert authority. Give that a shot and see if that helps. 

Tim N.
Lansweeper Employee

New to Lansweeper?

Try Lansweeper For Free

Experience Lansweeper with your own data.
Sign up now for a 14-day free trial.

Try Now