RE: Need a HOW TO create a client certificate for partner access
From: dave nixon (david.nixon_at_danix-consulting.com)
Date: Wed, 17 Aug 2005 15:32:04 -0700
its all in here!
"Serge Ayotte" wrote:
> Hello to all... If the following is part of a white paper or other
> 'net resource, please direct me to it... After many trial on Google, I
> can't seem to hit the right word combination :)
> Never having touch (for not needing it) certificate/pki, I am a bit
> lost now...
> I need to secure a SharePoint Portal Server site that will be access
> from the "outside" of the network (this SPS is running on a member
> server of a SBS2K3 domain). I already have SSL and permit only that,
> but I was asked to look into a "stronger" method of making sure that
> the people accessing it are allowed.
> Aside from user/password I immediately thought that a client
> certificate would be the way to go, but now I am a bit lost in all the
> information I got from MS and Technet about client certificate.
> To give a certificate to someone to import on his computer, do I HAVE
> to have him connect to a Certificate server site for that? Isn't there
> a way for me to be able to generate the certificate and send it to the
> "outside partner" I want to give access to the site?
> If I am correct, I could then associate the certificate to a login
> account, so in a way having a double security level (i.e.
> username/password not enough to access, or only the certificate not
> enough also).
> Thank you in advance for any and all hints, tips, trick and direction
> you will provide... Very much appreciated in advance!
> Serge Ayotte
> Systems Administrator