|
Posted by jgallin on March 13, 2008, 2:37 pm
Please log in for more thread options > No, the requirement for trusting your certificates is not being a part of
> your AD but having your CA certificate on the certificate trust list. So
> there's a trivial solution to the alleged problem - make sure there is an
> externally accessible authority info acess point and CRL distribution poin=
t
> for your CA.
>
> --
> Svyatoslav Pidgorny, MS MVP - Security, MCSE
> -=3D F1 is the key =3D-
>
> *http://sl.mvps.org*http://msmvps.com/blogs/sp*
>
>
>
>
>
> > Hi. =A0I am a little new to working with CAs and cant seem to find an
> > answer to my question. =A0We are looking to assign certificates to
> > everything from our own software and ActiveX controls to websites we
> > have on the outside. =A0It would seem that we would want an Enterprise
> > Root CA but if someone connecting wasnt part of our active directory
> > it sounds like they would have a problem accessing the websites. =A0Im
> > not really sure what I need to setup to do this. =A0Any help would be
> > great. =A0Thanks.- Hide quoted text -
>
> - Show quoted text -
I guess my real question here is whether or not the person using the
certificate has to be part of the Active Directory or just the person
requesting it. Basically if we create an ActiveX control and decide
to build a certificate for it and give it to a client outside our
organization, can they use it or does it somehow need to access the CA
because it is an Enterprise Root CA? The original requester whould be
part of our Active Directory.
| 
XML Sitemap