Re: Trusted CA question
From: Andrew Mitchell (amitchell_at_removecasey.vic.gov.au)
Date: 03/31/04
- Next message: anonymous_at_discussions.microsoft.com: "windows 2000 objects"
- Previous message: anonymous_at_discussions.microsoft.com: "Legit files?"
- In reply to: 620: "Trusted CA question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 31 Mar 2004 05:37:16 -0800
"620" <no@no.no> said
> Why is the cert path "incomplete" when accessing the site externally
> (i.e. from the web). Is this a naming/scope issue?
>
It sounds like your CA is on a host that's listed on your internal DNS, but
is not an internet facing machine.
As the external client cannot resolve the host name of the root CA, it cannot
be verified and fails.
> Is there a best practice to get my root CA cert installed on the web
> clients?
I'm having the same problem at the moment. The only two options I can think
of are to install the root CA on the web server (which I don't want to do) or
buy a 'real' certificate.
www.freessl.com are selling them at $98 for 3 years which seems reasonable.
Andy.
- Next message: anonymous_at_discussions.microsoft.com: "windows 2000 objects"
- Previous message: anonymous_at_discussions.microsoft.com: "Legit files?"
- In reply to: 620: "Trusted CA question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
