Just as a quick reference for myself, here are the required statements to create your own certificate using OpenSSL:
- Create the ADFS certificate:
openssl req -x509 -nodes -days 3650 -newkey rsa:1024 -keyout adfs01.pem -out adfs01.pem-extensions v3_ca
- Pack the certificate and the key into a pfx file so we can easily import it into the Windows Certificate store:
openssl pkcs12 -export -out adfs01.pfx -in adfs01.pem -name "adfs01"