Re: Certs in non-domain environment:
- From: "Mark Burnett" <mb@xxxxxxxx>
- Date: Thu, 31 Jan 2008 13:34:01 -0700
Correct, you would store each other's certs (and the certs that sign those certs) in each other's store. Another option, if you don't already have PKI in place, is to use free certs from cacert.org and have them as the CA.
Mark Burnett
"Kristin Griffin" <kristin.l.griffin@xxxxxxxxx> wrote in message news:%23LH%23FIrXIHA.1212@xxxxxxxxxxxxxxxxxxxxxxx
Hi there.
I have been learning about PKI and AD CS. And there is alot of material
about using active Directory to hand out certs.
But what if you were in a non-domain environment. How would 2 companies use
each other's certs? Let's say that company A and company B each had AD CS
running on standalone machines. Let's say they each were part of a
workgroup instead of a domain.
In order to use each other's certts, would they need to manually exchange
certs, put them each other's cert store, and also exchange the Root CA cert
and put that in the certificate store (in two places I think)?
Or am I thinking about this all wrong?
Thanks for your help.
Kristin
.
- References:
- Certs in non-domain environment:
- From: Kristin Griffin
- Certs in non-domain environment:
- Prev by Date: AD CS on a DC?
- Next by Date: Re: SAMR named pipe
- Previous by thread: Certs in non-domain environment:
- Next by thread: Duplicate Certificate templates
- Index(es):
Relevant Pages
|
