Re: Help Please! IPSecurity Policy
From: Tony (indengr@yahoo.com)
Date: 08/29/02
- Next message: George: "Re: Security Tab missing"
- Previous message: Kerby: "Permissions to create a Network printer"
- In reply to: krish shenoy[MS]: "Re: Help Please! IPSecurity Policy"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Tony" <indengr@yahoo.com> Date: Thu, 29 Aug 2002 12:24:27 -0700
Hi,
The certificate is in local machine/Trusted root
certification authorities. It is also in local
machine/personal store. How do I find out if the CA is
Enterprise CA or standalone CA.
I configued this CA on a windows 2000 domain for the
whole domain. Its on a domain controller.
Thanks-awaiting your response.
tony
>-----Original Message-----
>1) Is the certificate in the Local machine\Personal store
>2) The certificate may need to have the IPSEC IKE policy
>I can explain how to configure this if you tell me if
the CA on machine A is
>an Enterprise CA or Standalone CA
>
>--
>This posting is provided "AS IS" with no warranties and
confers no rights.
>Use of any included samples is subject to the terms
specified at
>http://www.microsoft.com/info/copyright.htm"
>"tony" <indengr@yahoo.com> wrote in message
>news:9a9701c24f05$9c7fd7d0$35ef2ecf@TKMSFTNGXA11...
>> Hi,
>> I'm having a weird certificate problem on one of my
>> windows 2000 advanced server machines. It is a domain
>> controller. Lets call it Machine A.
>> I'm using this to dial up to a different server (vpn
>> server) in the internet. Lets call this Machine B.
This
>> VPN Server is also a windows 2000 domain controller and
>> runs Certificate authority.
>>
>> As I'm using Machine A to VPN into machine B, I have
to
>> configure ipsecurity policy on this machine A. So I
do
>> the following:
>>
>> 1) I start internet explorer and type
>> http://MachinA/certsrv/ to request a certificate from
the
>> certificate authority. I successfully get a
certificate
>> and install it. Its for all purposes including client
>> authentication. I checked the certificates list and
the
>> certificate is installed in the trusted root
certication
>> authorities.
>>
>> 2). I start MMC and add the 'IpSEcurity policy
management'
>> snapin for the local machine.
>>
>> 3). I right click and select ' create ip security
policy'
>> and then the wizard pops up. After entering a name,
it
>> prompt to select an authentication method. And I
>> select 'Use a certificate from a certificate authority'
>> and try to browse to select the certificate I generated
>> from Machine B. I don't see the certificate at all.
But
>> I see all other certificates from the root
certification
>> authority.
>>
>> why doesn't my ceritificate show up? If I use
>> ceritificates snap-in or internet explorer option -
>> certificates, i can see it. Rememember the
certificate is
>> issued for all purposes.
>>
>> I'm not sure what I'm doing wrong here. Help!
>>
>> thanks
>> tony
>>
>>
>>
>>
>
>
>.
>
- Next message: George: "Re: Security Tab missing"
- Previous message: Kerby: "Permissions to create a Network printer"
- In reply to: krish shenoy[MS]: "Re: Help Please! IPSecurity Policy"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
