RE: SSL for a clustered web site
From: Karl Westerholm [MS] (karlwestonline@microsoft.com)
Date: 07/20/02
- Next message: Scott Stahlman [MS]: "RE: Can IIS use RADIUS for authentication"
- Previous message: Michael Laing: "RE: URL encryption?"
- In reply to: Chris: "SSL for a clustered web site"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: karlwestonline@microsoft.com (Karl Westerholm [MS]) Date: Sat, 20 Jul 2002 00:39:02 GMT
Greetings,
I am assuming you are using IIS5? If so, then I think I have several KB
articles you will find useful. The first is the direct answer to your
question, how to generate a certificate request file from a given website
for submission either to Verisign, Entrust, or perhaps to your own internal
Certificate Server:
http://support.microsoft.com/default.aspx?scid=kb;EN-US;q228821
This next KB is a little more elaborate. It presumes that you have a
W2K/Certificate Server 2.0 server set up for testing purposes, but if you
replace the sections referring to Cert Srv 2 with whatever method
Verisign/Entrust requests it is nevertheless a good resource for setting up
SSL generally:
http://support.microsoft.com/default.aspx?scid=kb;EN-US;q290625
As far as the number of certificates you may need, that will depend on
your Certificate issuer. If you issue your own certificates (which still
results in perfectly secure SSL connections) you can simply export them
from one server in the cluster to another as needed.
On the other hand, if you are using a cert from (say) Verisign - and
this certificate is going to be installed to multiple servers in a farm or
cluster - you should check with them on licensing requirements. In some
cases, you may need to license a copy for each server.
Hope this helps,
-->Karl
“Please do not send email directly to this alias. This is our online
account name for newsgroup participation only.”
This posting is provided “AS IS” with no warranties, and confers no rights.
You assume all risk for your use. © 2001 Microsoft Corporation. All rights
reserved.
--------------------
| From: cszamir@sandia.gov (Chris)
| Newsgroups: microsoft.public.inetserver.iis.security
| Subject: SSL for a clustered web site
| Date: 18 Jul 2002 13:35:21 -0700
| Organization: http://groups.google.com/
|
| I've got a web-based application running on a two-node clustered
| setup. I need to know how I can get this web site, which runs on the
| virtual clustered machine, to be secure. In other words, what do I
| need to provide to Verisign, Entrust or any other certificate
| authority in order for this to work? Any suggestions or help would be
| greatly appreciated. Thanks
|
- Next message: Scott Stahlman [MS]: "RE: Can IIS use RADIUS for authentication"
- Previous message: Michael Laing: "RE: URL encryption?"
- In reply to: Chris: "SSL for a clustered web site"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
