Re: Microsoft CA vs. Cisco SCEP protocol
From: Mike Mellinger (mmellinger@hotmail.com)
Date: 07/31/02
- Next message: Joshua Heslinga: "Re: Kerberos Security - How to switch off"
- Previous message: wombat: "Re: Password Changed"
- In reply to: Chris Gilbert: "Re: Microsoft CA vs. Cisco SCEP protocol"
- Next in thread: D. Cross [MS]: "Re: Microsoft CA vs. Cisco SCEP protocol"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Mike Mellinger" <mmellinger@hotmail.com> Date: Tue, 30 Jul 2002 19:58:07 -0500
Actually that might work but would involve somehow stopping the transaction
before the certificate is actually issued. I was unable to achieve this.
The key (bad pun) is to modify the template or get Microsoft to do same.
Thanks for the idea. I'll play with it some more.
Mike
"Chris Gilbert" <Chris.Gilbert@Consignia.com> wrote in message
news:3d464f61$1@RGINF-S02.research-group.co.uk...
>
> Mike Mellinger wrote
>
> > Anyone (a) have a clue on how to approach Microsoft to change this or
(b)
> > how to change it myself?
>
> My gut feeling is that you could probably use the certutil tool to add the
> OID for Digital Signtaure to the ExtendedKeyUsage field in the certificate
> before issuance. I have never tried to do this though.
>
> Chris
>
>
- Next message: Joshua Heslinga: "Re: Kerberos Security - How to switch off"
- Previous message: wombat: "Re: Password Changed"
- In reply to: Chris Gilbert: "Re: Microsoft CA vs. Cisco SCEP protocol"
- Next in thread: D. Cross [MS]: "Re: Microsoft CA vs. Cisco SCEP protocol"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
