Certificate Question
From: Bernd (nospam_at_hotmail.com)
Date: 03/11/04
- Next message: Bernd: "Re: Certificates"
- Previous message: Steven L Umbach: "Re: File Sharing on a DC"
- In reply to: DJ: "Certificate Question"
- Next in thread: Steve Buckley: "Re: Certificate Question"
- Reply: Steve Buckley: "Re: Certificate Question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 10 Mar 2004 17:11:06 -0800
You have to have a root CA and a subordinate CA.
The issuing CA is the subordinate. You can take
the root CA offline, but not the issuing.
>-----Original Message-----
>Hello All:
>
>Pulling my hair out trying to implement certificates for
VPN. We're going to
>be using eTokens side by side with certificates for 2
factor authentication.
>We only have a couple dozen users and I would like to
minimize their
>involvement.
>Is there a way that I can set up my CA, issue
certificates for each user,
>and then take the CA server off-line.
>
>Everytime I try to request a certificate for another
user, I get no
>templates found or problems accessing AD. If I just
request the token, I get
>it issued and can install it. I'd rather have the control
to request certs
>of the user's behalf and set up each token. Less truble
int he long run.
>
>Any help would be appreciated. --- using 2003 Enterprise
Edition.
>
>Thanks
>
>
>.
>
- Next message: Bernd: "Re: Certificates"
- Previous message: Steven L Umbach: "Re: File Sharing on a DC"
- In reply to: DJ: "Certificate Question"
- Next in thread: Steve Buckley: "Re: Certificate Question"
- Reply: Steve Buckley: "Re: Certificate Question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
