|
Home > Archive > IIS Server Security > May 2006 > Windows Certificate Server
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Windows Certificate Server
|
|
| NC Beach Bum 2006-05-30, 1:15 pm |
| I hope you can help me. Windows 20003 Server Active Directory Domain with
an internal XXX.NET Domain and an external XXX.ORG Domain.
I am creating our own Microsoft Internal Certificate Authority on my Domain
Controller to be used on our Exchange Server and the ISA 2004 Server in our
DMZ acting as a front end for our SMTP and OWA. When I started to create
the Certificate it came up with "DC=XXX,DC=net". I was not surprised but
now I am not sure if I need to continue with this Certificate or try and
create the certificate using "DC=XXX,DC=ORG". The Exchange Server is a
domain member but the ISA box has a single NIC and is in the DMZ Workgroup
only.
Also, we will need to put a Certificate for SSL on our web server which is
running as WWW.XXX.ORG and WWW.ZZZ.XXX.ORG. Can I use this same certificate
for both the ISA and Web Server or do I need to create a Stand Alone
Certificate for the Web Server?
Please help me so I can continue with the setup.
Thanks!
NC Beach Bum
--
NC Beach Bum
| |
|
| A CA service running in the domain "xxx.net" can & will serve certificates
for n number of purpose to systems in any other domain.
The system or service requiring certificate need not be a member of your
xxx.net domain.
"NC Beach Bum" wrote:
> I hope you can help me. Windows 20003 Server Active Directory Domain with
> an internal XXX.NET Domain and an external XXX.ORG Domain.
>
> I am creating our own Microsoft Internal Certificate Authority on my Domain
> Controller to be used on our Exchange Server and the ISA 2004 Server in our
> DMZ acting as a front end for our SMTP and OWA. When I started to create
> the Certificate it came up with "DC=XXX,DC=net". I was not surprised but
> now I am not sure if I need to continue with this Certificate or try and
> create the certificate using "DC=XXX,DC=ORG". The Exchange Server is a
> domain member but the ISA box has a single NIC and is in the DMZ Workgroup
> only.
>
> Also, we will need to put a Certificate for SSL on our web server which is
> running as WWW.XXX.ORG and WWW.ZZZ.XXX.ORG. Can I use this same certificate
> for both the ISA and Web Server or do I need to create a Stand Alone
> Certificate for the Web Server?
>
> Please help me so I can continue with the setup.
>
> Thanks!
> NC Beach Bum
> --
> NC Beach Bum
|
|
|
|
|