The attached document describes how to use private (internally signed) certificates with EEM.
This is the most secure way to eliminate certificate browser warnings.
It was brought to my attention that the previous document I published on using private signed certificated with EEM maintained the existing default key size of 1024 bits.
A common requirement is for this key size to be upgraded to 2048 bits to go along with the SHA-2 certificate that will be generated by the Certificate Authority.
Attached is an updated version of the document which covers upgrading the existing key and certificates, then continues with the procedure to generate and use a private signed certificate.