|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
Issiung certifcates by a Windows 2000 Enterprise CAHi All,
We have a AD domain with a Win2K and a Win2K3 server. IIS runs on ythe Win2K3 server. I am about to install a Certificate Server on the Wn2K box (anr using "Windows" Certifcatesand then use it to service https requests. Has anyone of you come across/foresee problems with this setup? TIA Patrick Depends what you're going to use them for. If you're using them internally,
you can set your CA as a trusted root in your browsers, but if you want to use them on the net, you can't guarantee the issuer will be trusted by your clients. They'll get a warning box about that, but the SSL transactions will still work as long as they hit OK to trust... -- Show quoteHide quoteJason Brown Microsoft GTSC, IIS This posting is provided "AS IS" with no warranties, and confers no rights. "Patrick" <Patr***@discussions.microsoft.com> wrote in message news:5A8B9EFD-C2E4-4CB6-BC51-2062CC1744AA@microsoft.com... | Hi All, | | We have a AD domain with a Win2K and a Win2K3 server. IIS runs on ythe | Win2K3 server. I am about to install a Certificate Server on the Wn2K box | (anr using "Windows" Certifcatesand then use it to service https requests. | | Has anyone of you come across/foresee problems with this setup? | | TIA | | Patrick Hi Jason,
Thanks for the post. Yes, it will be used by the domain users only. Will be there be any issues when it comes to upgrading the Windows 2000 server to Windows 2003? Most likely I will have to re-intslall the Certificate Server, wouldn't I? Also, in the event I need de-install Certificate Server from the Win2K box, can I do that without disturbing the Active Directory? Thanks heaps Patrick Show quoteHide quote "Jason Brown [MSFT]" wrote: > Depends what you're going to use them for. If you're using them internally, > you can set your CA as a trusted root in your browsers, but if you want to > use them on the net, you can't guarantee the issuer will be trusted by your > clients. They'll get a warning box about that, but the SSL transactions will > still work as long as they hit OK to trust... > > > -- > Jason Brown > Microsoft GTSC, IIS > > This posting is provided "AS IS" with no warranties, and confers no rights. > > > "Patrick" <Patr***@discussions.microsoft.com> wrote in message > news:5A8B9EFD-C2E4-4CB6-BC51-2062CC1744AA@microsoft.com... > | Hi All, > | > | We have a AD domain with a Win2K and a Win2K3 server. IIS runs on ythe > | Win2K3 server. I am about to install a Certificate Server on the Wn2K box > | (anr using "Windows" Certifcatesand then use it to service https requests. > | > | Has anyone of you come across/foresee problems with this setup? > | > | TIA > | > | Patrick > > > 
Other interesting topics
Cannot find server or DNS error
401 Unauthorized trying to read SPList Attachment - owssrv.dll Administrator 401.1 after SP1 SharePoint password prompting webdav prompts for second password Why is iis6.log on an XP home machine? SSL doesn't work IWA with multiple AD Permission Denied when writing text file from ASP Site access only through Local groups |
|||||||||||||||||||||||
