Re: root CA as a virtual machine?

---

• From: "jeffgr1776 via WinServerKB.com" <u30666@uwe>
• Date: Thu, 07 Jun 2007 14:28:06 GMT

---

I've not set up a PKI before, but I have considerable MS doc and guidance
information.
The configuration I'm looking at would be a root CA as a VM, with one
subordinate/issuing
CA for our product and, later, one AD-integrated subordinate/issuing CA for
the enterprise,
about 150 people.

1) How well does this conform to best practices?

2) Any specific gotchas of which I should be aware?

3) Recommendations / experiences regarding HSMs, partcularly FIPS 140-2 level
4.

Jeff

S. Pidgorny <MVP> wrote:

Both feasible. Any details are you interested in?

I am interested in the feasibility of configuring a root CA as a virtual
machine, which can be "stored" offline. Any thoughts?

[quoted text clipped - 4 lines]

Jeff

--
Message posted via WinServerKB.com
http://www.winserverkb.com/Uwe/Forums.aspx/windows-server-security/200706/1

.

---

• References:
  • root CA as a virtual machine?
    • From: jeffgr1776 via WinServerKB.com

• Prev by Date: Re: Can I have two passwords for one user?
• Next by Date: Re: protect admins account
• Previous by thread: root CA as a virtual machine?
• Next by thread: Re: root CA as a virtual machine?
• Index(es):
  • Date
  • Thread

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(16)