Re: Secure Channel and StandAlone IIS box.
From: at (tarasul@hotmail.com)
Date: 01/25/03
- Next message: Aaron Dodd: "Re: Can SU.EXE be used without a MS network (but Win2K clients)?"
- Previous message: Aaron Dodd: "Re: Why couldn't Public keys replace Passwords on the Internet?"
- In reply to: Jacob [MS]: "RE: Secure Channel and StandAlone IIS box."
- Next in thread: Jacob [MS]: "Re: Secure Channel and StandAlone IIS box."
- Reply: Jacob [MS]: "Re: Secure Channel and StandAlone IIS box."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "at" <tarasul@hotmail.com> Date: Fri, 24 Jan 2003 20:46:30 -0600
Sorry, but you correctly answered on wrong question.
My question was about if and how registry settings
SignOrSeal = Secure channel: Digitally encrypt or sign secure channel data
(always)
SealSecureChannel = Secure channel: Digitally encrypt secure channel data
(when possible)
SignSecureChannel = Secure channel: Digitally sign secure channel data
(when possible)
affect other secure channels except member service to DC communications?
The reason for question is because the same schannel.dll configured by those
settings also serve IIS SSL operations and may be also have other uses.
"Jacob [MS]" <jacobf@online.microsoft.com> wrote in message
news:oPZq08rwCHA.2492@cpmsftngxa08...
> Hi,
>
> Based on your description, my understanding is that you want to configure
SSL for IIS server. If I misunderstood your concerns, please let me
> know.
>
> To enable SSL in IIS, you must first obtain a certificate that is used to
encrypt and decrypt the information that is transferred over the network.
> jacobf@online.microsoft.com
> Product Support Services
> Microsoft Corporation
>
> This posting is provided Ħ°AS ISĦħ with no warranties, and confers no
rights.
> --------------------
> | From: "at" <atarasul@spencerstuart.com>
> | Subject: Secure Channel and StandAlone IIS box.
> | Date: Tue, 21 Jan 2003 11:45:05 -0600
> | Keywords: SChannel, IIS
> |
> | Hello,
> | I'm evaluating security templates for standalone bastion IIS 5.0 on
Win2K
> | SP3 with principle - don't enable what can be disabled.
> | The question I come up - what the value of Secure Channel settings for
this
> | server.
> |
> | SignOrSeal = Secure channel: Digitally encrypt or sign secure channel
data
> | (always)
> | SealSecureChannel = Secure channel: Digitally encrypt secure channel
data
> | (when possible)
> | SignSecureChannel = Secure channel: Digitally sign secure channel data
(when
> | possible)
> |
> | According to Microsoft Secure Channel settings relates only to
communication
> | between Member server and DC (which I don't have). However usage of
> | schannel.dll for IIS SSL functionality hinting on possible relationship
> | between functioning as HTTPS server and disabling those seemengly
unneeded
> | services.
> | Any ideas?
> |
> | Thanks
> | Alexander
> |
> |
> |
>
>
- Next message: Aaron Dodd: "Re: Can SU.EXE be used without a MS network (but Win2K clients)?"
- Previous message: Aaron Dodd: "Re: Why couldn't Public keys replace Passwords on the Internet?"
- In reply to: Jacob [MS]: "RE: Secure Channel and StandAlone IIS box."
- Next in thread: Jacob [MS]: "Re: Secure Channel and StandAlone IIS box."
- Reply: Jacob [MS]: "Re: Secure Channel and StandAlone IIS box."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
