|
Home > Archive > IIS Server Security > August 2007 > Microsoft CA & external SSL
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Microsoft CA & external SSL
|
|
| Wilson 2007-08-12, 1:23 am |
| Currently, we are using external party’s SSL certificate to secure our web
sites but for our SSL VPN appliance, the vendor said that we could use
Microsoft certificate. But I am not sure whether there is any impact between
the two or the best way to set up the CA server, as I am new to Microsoft CA.
Please advise. Thanks!
| |
| Anthony 2007-08-12, 7:20 am |
| The issue is simply that a commercial certificate is automatically trusted
by clients, whereas your internal certificate is not.
If the SSL VPN is for internal use on clients you control, you have the
option of distributing your certificate to the clients or making your CA a
trusted authority. You may not have this option, for example, on a partner
extranet.
It is really much easier just to purchase the certificate, except for
development or very small scale use, or if you intend to use the internal CA
very widely for other things.
Anthony -
http://www.airdesk.co.uk
"Wilson" <Wilson@discussions.microsoft.com> wrote in message
news:2C04FD2B-FAF0-4FFE-91B0-FDA9BB6403F4@microsoft.com...
> Currently, we are using external party's SSL certificate to secure our web
> sites but for our SSL VPN appliance, the vendor said that we could use
> Microsoft certificate. But I am not sure whether there is any impact
> between
> the two or the best way to set up the CA server, as I am new to Microsoft
> CA.
>
> Please advise. Thanks!
>
|
|
|
|
|