Re: root CA as a virtual machine?
- From: Brian Komar <bkomarr@xxxxxxxxxxxxxxxxx>
- Date: Thu, 7 Jun 2007 15:16:20 -0500
On Wed, 06 Jun 2007 22:08:36 GMT, jeffgr1776 via WinServerKB.com wrote:
I am interested in the feasibility of configuring a root CA as a virtual
machine, which can be "stored" offline. Any thoughts?
Also, with a root CA as a VM, how about storing the private key in a USB HSM
such as Luna?
Jeff
There are some risks, as it is very easy to walk out of a company with a
DVD containing the root CA.
You can use an HSM, but I have never heard of a USB HSM.
For offline roots, you only option that I am aware of is a network attached
HSM" Luna SA or nCipher netHSM.
As for support, the only supported virtualized environment is Microsoft
Virtual Server 2003 R2 SP1.
The virtualized CA must be running Windows Server 2003 SP1 or higher.\
HTH,
Brian
.
- References:
- root CA as a virtual machine?
- From: jeffgr1776 via WinServerKB.com
- root CA as a virtual machine?
- Prev by Date: User folders permissions.
- Next by Date: clients separated from DC by firewall
- Previous by thread: Re: root CA as a virtual machine?
- Next by thread: Can I have two passwords for one user?
- Index(es):
