Re: Windows 2003 with third partu CA
From: David Cross [MS] (dcross_at_online.microsoft.com)
Date: 10/30/04
- Next message: Steven L Umbach: "Re: RRAS router with ICF requires port/ip mapping?"
- Previous message: Ondřej Ševeček: "Re: RRAS router with ICF requires port/ip mapping?"
- In reply to: S. Pidgorny
: "Re: Windows 2003 with third partu CA" - Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 30 Oct 2004 11:22:13 -0700
one of these three articles should help you track down what is missing from
your scenario and causing the failure:
Guidelines for Enabling Smart Card Logon with Third-Party
Certification Authorities (Q281245):
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q281245
ˇ Requirements for Domain Controller Certificates from a Third-Party
CA (Q291010):
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q291010
ˇ How to Import a Third-Party Certificate into the NTAuth Store
(Q295663): http://support.microsoft.com/default.aspx?scid=kb;EN-US;Q295663
-- David B. Cross [MS] -- This posting is provided "AS IS" with no warranties, and confers no rights. http://support.microsoft.com "S. Pidgorny <MVP>" <slavickp@yahoo.com> wrote in message news:uJ7W0vZvEHA.2564@TK2MSFTNGP12.phx.gbl... > You probably have seen the guidelines: > http://support.microsoft.com/?id=281245. I'd suggest that you'll have to > try > HTTP and/or FTP CRL distribution point, as LDAP schema for CRL is not > standartised, as far as I remember. > > -- > Svyatoslav Pidgorny, MVP, MCSE > -= F1 is the key =- > > > > "Lorenzo Soncini" <lorenzo_soncini_technoservice_com> wrote in message > news:OKTx3AZvEHA.1564@TK2MSFTNGP09.phx.gbl... >> Hi, >> I have implemented a smart card logon on Windows 2003 domains and all >> work >> fine. >> >> Now I need to use an external CA for authentication based on SUN Solaris >> system. I have make the configurations but when I try the logon the >> System >> return an error who say: >> "The system could not log you on. The smartcard certificate used for >> authentication was not trusted." >> >> I have added the CDP point in the proprieties of the CA as LDAP server >> but >> don't work. >> >> How can I tel Windows 2003 to use an external LDAP server for checking >> the >> revocation of the Certificate? >> >> Sorry for my english and thanks for any help >> Lorenzo Soncini >> >> > >
- Next message: Steven L Umbach: "Re: RRAS router with ICF requires port/ip mapping?"
- Previous message: Ondřej Ševeček: "Re: RRAS router with ICF requires port/ip mapping?"
- In reply to: S. Pidgorny
: "Re: Windows 2003 with third partu CA" - Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
