Re: New to CAs
- From: jgallin@xxxxxxxxxxxxxxx
- Date: Thu, 13 Mar 2008 11:37:03 -0700 (PDT)
On Mar 8, 10:30 pm, "S. Pidgorny <MVP>" <slavi...@xxxxxxxxx> wrote:
No, the requirement for trusting your certificates is not being a part of
your AD but having your CA certificate on the certificate trust list. So
there's a trivial solution to the alleged problem - make sure there is an
externally accessible authority info acess point and CRL distribution point
for your CA.
--
Svyatoslav Pidgorny, MS MVP - Security, MCSE
-= F1 is the key =-
*http://sl.mvps.org*http://msmvps.com/blogs/sp*
<jgal...@xxxxxxxxxxxxxxx> wrote in message
news:216f8833-f272-4aca-a43d-1a6a097e2dc4@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Hi. I am a little new to working with CAs and cant seem to find an
answer to my question. We are looking to assign certificates to
everything from our own software and ActiveX controls to websites we
have on the outside. It would seem that we would want an Enterprise
Root CA but if someone connecting wasnt part of our active directory
it sounds like they would have a problem accessing the websites. Im
not really sure what I need to setup to do this. Any help would be
great. Thanks.- Hide quoted text -
- Show quoted text -
I guess my real question here is whether or not the person using the
certificate has to be part of the Active Directory or just the person
requesting it. Basically if we create an ActiveX control and decide
to build a certificate for it and give it to a client outside our
organization, can they use it or does it somehow need to access the CA
because it is an Enterprise Root CA? The original requester whould be
part of our Active Directory.
.
- References:
- New to CAs
- From: jgallin
- New to CAs
- Prev by Date: An attempt was made to access a socket in a way forbidden by its access permissions
- Next by Date: Unable to create a Network Place to a DFS Link
- Previous by thread: New to CAs
- Next by thread: Rights to allow non admin to close other users' files
- Index(es):
Relevant Pages
|
|
