root CA as a virtual machine?
- From: "jeffgr1776 via WinServerKB.com" <u30666@uwe>
- Date: Wed, 06 Jun 2007 22:08:36 GMT
I am interested in the feasibility of configuring a root CA as a virtual
machine, which can be "stored" offline. Any thoughts?
Also, with a root CA as a VM, how about storing the private key in a USB HSM
such as Luna?
Jeff
--
Message posted via WinServerKB.com
http://www.winserverkb.com/Uwe/Forums.aspx/windows-server-security/200706/1
.
Relevant Pages
- Re: Certificate chain issue with Ent Sub Ca & stand alone Root CA
... certificate and I get a "Cannot verify certificate chain. ... revocation because the revocation server was offline. ... the root ca? ... Online>>> Online Enterprise Subordinate CA ...
(microsoft.public.windows.server.security) - Re: can a microsoft enteprise Root CA be offline?
... > I have notice that if the CA server is offline, ... > cannot be authenticated by the IAS server. ... > Isn=3Ft it suppose that the the certificates are valid by them selfs? ... the root CA must be installed as a Standalone ...
(microsoft.public.win2000.security) - RE: Offline Root CA issue
... I had to change the validity of the CRL ... subordinate online CA server in an Windows 2003 Server environment (virtual ... I have exported the CRL from the offline root into the online ...
(microsoft.public.dotnet.security) - Re: Enterprise Root CA Install
... Thank you for your input regarding the offline CA. ... I tested the concept of creating a "standalone ... root CA" based on a Technet article entitled "Deploying ... an "Enterprise subordinate CA" installation. ...
(microsoft.public.win2000.security) - Re: Certificate Authority CRLs
... you can setup Standalone Root CA that can be offline. ... > you can setup subordinate Enterprise CA that is signed by your offline> Root ...
(microsoft.public.win2000.security) |
|
