Re: Need for encryption in WSE 3.0 if using SS-avoid man-in-middle



Hi John,

X509V3 is a certificate type and this is the most poular standard used
currently. Therefore, almost all the certificates mentioned here are of
X509 certificate. Also, there're many different kinds of x509 certificates
according to their usage. And SSL certificate is one of them. This
certificate can be used to identiffy a SSL/HTTPS server which contains both
private and public key(installed on the server). For SSL client-side, you
can import the SSL server certificate's public certificate(only contains
public key that can use to identify the certificate). Such public
certificate can be get through export the server certificate on the server
machine(no include private key).


Windows 2000 or 2003 server has a certificate service, you can install it
and produce different kind of test certificate that can be used in your
local environment.

#Use Windows Server 2003 Certificate Services Web Pages
http://technet2.microsoft.com/WindowsServer/en/library/26453270-45e5-4ffb-9a
25-38a661b058241033.mspx

for more detailed information about PKI and x509 certificate ,you can also
consult in some security specific community or forum.

Please feel free to let me know if you have any further questions on this.

Sincerely,

Steven Cheng

Microsoft MSDN Online Support Lead


This posting is provided "AS IS" with no warranties, and confers no rights.

.



Relevant Pages

  • Re: [opensuse] Apache 2.4.6 on OpenSuse 13.1: ssl_error_rx_record_too_long and ERR_SSL_PROTOCOL_ERRO
    ... to the server's key and certificate, as well as to my rootCA ... The web server DOES start, ... virtual host that is supposed to be using SSL, ... # List the ciphers that the client is permitted to negotiate. ...
    (SuSE)
  • RE: SSL MITM not on port 443
    ... Have you ever done what you're trying to do on a "normal" SSL web ... My recommendation would be to set up a web server in your lab ... hopes that the client will accept that certificate. ... SSL MITM not on port 443 ...
    (Pen-Test)
  • Re: OWA 2003 w/ Smart Card Authentication.
    ... Exchange 2003 server via ActivSync. ... the IIS certificate. ... Whether or not authentication will succeed is completely dictated by ... Server's SSL certificate must be configured on root of v-server via ...
    (microsoft.public.exchange.connectivity)
  • Re: Publish SSL Web Server behind SBS2003
    ... > How to configure a certificate for use with a Web publishing rule in ISA ... > Server 2004 ... > RWW/OWA for SSL encryption. ... Right click the SSL Web Site and click Properties. ...
    (microsoft.public.windows.server.sbs)
  • Re: "Could not connect to server" error when accessing Outlook 200
    ... Perhaps when you connect via RDP, you have to use SSL. ... The server you are connected to is using a security certificate ... A certificate chain processed, but terminated in a root certificate which is ... Settings on the Advanced tab. ...
    (microsoft.public.outlook.installation)