Re: Installing Certification Authority server for SSL OWA
- From: "andy webb" <awebb@xxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 23 Apr 2008 21:36:29 -0500
There's great guidance on setting up your PKI on technet. You want to have at least 2 CAs. An offline Stand-alone Root CA on a non-domain member and an Enterprise Subordinate CA that is a domain member (but not on a DC).
A good start: http://technet2.microsoft.com/windowsserver/en/library/59f1dc5d-8720-419f-b7bf-3acf1dc549241033.mspx?mfr=true
One document is here: http://www.microsoft.com/downloads/details.aspx?FamilyId=CDB639B3-010B-47E7-B234-A27CDA291DAD&displaylang=en
Also look for anything by Brian Komar, who has a brand new Windows 2008 PKI book out by the way.
"achen" <achen2002@xxxxxxxxx> wrote in message news:d81256b4-24be-4cf4-a793-052f85f6a39c@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
We have decided to install a CA server for users to securely access
OWA and Outlook Anywhere 2007 from outside the corp network, however I
am a little bit confused in 4 different roles:
-Enterprise Root CA
-Enterprise Subordinate CA
-Stand-alone Root CA
-Stand-alone Subordinate CA
The CA server will be a domain member, the clients will be from
anywhere on the Internet (not VPN connected), which type of CA should
I install? And the reason?
.
- Follow-Ups:
- References:
- Prev by Date: Re: Rapid Transaction Log Creation
- Next by Date: Re: NEED HELP CONFIGURING UP FOR MASS EMAILING
- Previous by thread: Installing Certification Authority server for SSL OWA
- Next by thread: Re: Installing Certification Authority server for SSL OWA
- Index(es):
Relevant Pages
|
