Re: Computer Certificate Private Key
- From: Mr.B <MrB@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Sun, 9 Dec 2007 00:58:00 -0800
Interested.
I have set up 802.1x. I will test it tomorrow. SO i can excepted that
computer will be authenticated with 802.1x. So computer get in to private
network, but it does not authenticate to domain. But that is security birch.
Problem is that I use v1 computer template, and I don’t now, how to make
automotive request, with option, do not export private can, or make it
exportable….
"Alun Jones" wrote:
"Mr.B" <MrB@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message.
news:C70A8D7E-E75E-45ED-834B-D8ADB05521CE@xxxxxxxxxxxxxxxx
By default, if i set up auto enrollment for computer certificate, i can
from
computer export private key.
What would happened, if i import these key to different computer.
If I use different computer and i tried to authenticate, to IAS, would it
exempted as valid ?
Cryptography assumes that if you have the private key, you are the
individual or computer identified as associated with that key.
However, the recipient of a signed key exchange (in this case, IAS) might
note that your computer is trying to authenticate as a computer name other
than that with which it passed NTLM authentication. In such a case, it would
almost certainly fail the authentication.
Alun.
~~~~
- Follow-Ups:
- Re: Computer Certificate Private Key
- From: Brian Komar
- Re: Computer Certificate Private Key
- References:
- Re: Computer Certificate Private Key
- From: Alun Jones
- Re: Computer Certificate Private Key
- Prev by Date: Re: Group Policy script protection
- Next by Date: Re: Computer Certificate Private Key
- Previous by thread: Re: Computer Certificate Private Key
- Next by thread: Re: Computer Certificate Private Key
- Index(es):
Relevant Pages
|
