Re: Certificates and DNS

From: Tom Snyder (tpsnyder@xantrion.com)
Date: 12/27/02

• Next message: ail: "stupid password"
• Previous message: Jim Moore: "Digest Authentication"
• In reply to: Karl Levinson [x y] mvp: "Re: Certificates and DNS"
• Next in thread: Tim Greene: "Re: Certificates and DNS"
• Reply: Tim Greene: "Re: Certificates and DNS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Tom Snyder" <tpsnyder@xantrion.com>
Date: Thu, 26 Dec 2002 23:21:15 -0800

So, um how do I request a cert with a certain name. When I walked through
the certserv website on my certificate server I never saw the opportunity to
request a custom name, the certificate seems to be issued by default with
the name of the server.

Thanks,

Tom

"Karl Levinson [x y] mvp" <jamescagney90210@excite.com> wrote in message
news:OXAUmeSrCHA.1644@TK2MSFTNGP09...
> ... so you have a choice of either changing the cert, or changing the DNS
> and the URL that points to the server, so that one matches the other.
>
>
> "Tim Greene" <TimGreene@online.microsoft.com> wrote in message
> news:4oGT4dQrCHA.3248@cpmsftngxa06...
> > Tom,
> >
> > When using SSL, IIS will compare the URL typed in the browser (which
ends
> > up to be the HTTP host header) to what is stored in the certificate to
see
> > if they match. If they don't, you should be getting an warning
suggesting
> > they don't match. If you want to have a certificate that matches the
DNS
> > entry for mis.xantrion.com, then you need to remove the certificate and
> > create a new one with "mix.xantrion.com" as the common name (CN).
> However,
> > Windows 2000 supports the use of wildcard characters, so you could
create
> a
> > certificate with the common name of "*.xantrion.com", and any site with
> the
> > suffix of xantrion.com will not get that prompt. Keep in mind, however,
> > that you will always get the prompt if the site entered in the URL does
> not
> > match what's in the certificate.
> >
> > Let me know if this doesn't help.
> >
> > Sincerely,
> >
> > Tim Greene MCSE, MCSA, MCP+I
> > IIS Newsgroup Support
> >
> > Please do not send email directly to this alias. This is our online
> account
> > name for newsgroup participation only.
> >
> > If you would like to open a support incident with Microsoft, call
> > 1-800-936-5800
> >
> > This posting is provided "AS IS" with no warranties, and confers no
> rights.
> > You assume all risk for your use. © 2001 Microsoft Corporation.
> >
>
>
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.423 / Virus Database: 238 - Release Date: 11/25/2002
>
>

• Next message: ail: "stupid password"
• Previous message: Jim Moore: "Digest Authentication"
• In reply to: Karl Levinson [x y] mvp: "Re: Certificates and DNS"
• Next in thread: Tim Greene: "Re: Certificates and DNS"
• Reply: Tim Greene: "Re: Certificates and DNS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Web Certificate for IIS Server on SBS Domain ... Before your reply, I actually ran across rapidssl myself, and have ordered and installed the free 30-day certificate on my site. ... I explained what you'd told me about putting my existing configuration at risk by installing Cert Services, and he said he didn't know that. ... Again, if you're just needing a cert to install on your web server to provide SSL connectivity for remote users, go with an external third-party provider. ... When you add Certificate Services on an internal network, lots of internal communications will start using pieces provided by the Cert Server instead of the defaults from Server 2003, and when things blow up, they can blow up gloriously. ... (microsoft.public.windows.server.sbs) Re: Terminal Services over a VPN ... Create a certificate request and submit it to godaddy in order to obtain a public cert. ... You can use the wizard in IIS Manager for this by creating a new website that matches the above name (on your TS server), right-click and choose properties, directory security tab, server certificate button. ... After the install you can stop or delete the website created above since you don't need it for anything. ... (microsoft.public.windows.terminal_services) Re: Unable to install Godaddy cert on SBS R2 Standard box ... I recently bought a ten year Turbo SSL cert, but I want to rebuild my server ... "Please create a new request,and request for a new certificate from ... Godaddy(issue a new certificate),then install the new certificate. ... (microsoft.public.windows.server.sbs) Re: SBS 2003 Premium and Cert Services ... that philosphy got blown out of the equation when SBS included Exchange OWA ... "Small Business Server" which is MS claim as to why the risk of exposing the ... the Certificate Server on another server, ... >> Cert, or you could edit the properties of your Certification Authority to ... (microsoft.public.windows.server.sbs) Re: Web Certificate for IIS Server on SBS Domain ... and installed the free 30-day certificate on my site. ... instructions to install Certificate Services. ... If I can find a way to issue my own cert without risking my SBS setup, ... > Server instead of the defaults from Server 2003, and when things blow up, ... (microsoft.public.windows.server.sbs)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint