Re: Sending a cert to a net user
From: Eduard Koller [MSFT] (eduardk_at_online.microsoft.com)
Date: Mon, 26 Apr 2004 16:52:11 -0700
When you generate a request and submit it to Certificate Services 2.0
through the Web pages, the server places a cookie on your computer. The
server uses this cookie to look up the pending requests that you made when
you return to check the status of your pending requests.
Thus, the request can ve viewed only from the computer / by the user
requesting the certificate.
-- Eddy Koller[MS] This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm "Oriane" <firstname.lastname@example.org> wrote in message news:uhbEjMIKEHA.556@TK2MSFTNGP10.phx.gbl... > Hi, > > when using the standard certsrv home page, a net user can check a pending > certificate, and eventually install it. Is there any guaranty that he is > the > only one who can access this page and install the cert ? > > Now if we suppose that we want to send a certificate to a net user, (which > is not suppose to have IE and Outlook), what is the best solution to be > sure > that : > - only this user will get the cert > - this user will install easily his cert ? > > In France where I live, when we receive a cert from a gov site, we receive > a > mail with an URL and a password. Is this the simplest solution ? > > Oriane >