Re: How does SBS create RWW certs?
- From: Susan Bradley <sbradcpa@xxxxxxxxxxx>
- Date: Sun, 30 Nov 2008 10:20:49 -0800
My understanding is that the CA technology is used without installing a CA. But it's still a CA generated cert.
In the 2k3 era it was the web based cert, in the 2k8 era it's the domain based cert.
SitsWithMouse wrote:
Susan.
As I see the SBS 2008 default install, there is no CA installed either. I had to install a CA when I wanted to implement an ISA server with 2008 in order to publish. So the functional accessable CA is also absent in 2008.
SteveB commented that there is functionality for issuing certs in the wizard and that the wizard does not use generally accessable underlying functionality as it does for DNS, Internet access and email. Is this also the case in 2008? Someone mentioned recently that 2008 supposedly runs powershell scripts. If this is so, how does it create the certs for a URL without the CA installed?
"Susan Bradley" wrote:
SitsWithMouse wrote:The "problem" with the technet articles is that they use tools not installed on a default SBS installation, i.e. SBS does not have the CA installed, yet it creates the RWW cert without it.Which version of SBS are you referring to in your underlying question?
"Dave Nickason [SBS MVP]" wrote:
You can install certificate services on the SBS and do whatever you want in the way of generating self-signed certs. There are some potential issues, primarily that once you've done this, you can't just undo it - you need to leave it installed to prevent certs you issued from stopping working. This can be an additional thing to deal with if you migrate to new hardware, etc. so just keep it in the back of your mind.
This is all well documented in TechNet, but unfortunately I think it's one of those topics where you're going to find a zillion pages of documentation and most of it applies to enterprises. The short answer is that you go to CP Add/Remove, Add/Remove Windows Components. Add Certificate Services. There are a couple of configuration questions if I remember right. One that comes to mind is that you probably want an enterprise root CA.
Then go to Start -> Run -> MMC. In the new console, File -> Add/remove Snap-ins. Add Certificates and you'll be able to add certs there.
"SitsWithMouse" <SitsWithMouse@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:57E18535-E554-43D1-9FCE-7CA504BDED91@xxxxxxxxxxxxxxxxReally? Thats too bad :(
Thanks for the post
"SteveB" wrote:
I believe the SBS dev team built in special wizardry to the CEICW in order
to create the certs. There is a limitation of only creating and using one at
a time. I don't believe you can do it manually with the default installed
tools.
"SitsWithMouse" <SitsWithMouse@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:DC9A38AB-3A13-4AB5-8CD1-8319985676E7@xxxxxxxxxxxxxxxxHi
I would like to know how SBS creates the root certs it uses with RWW, OWA
etc.
I know the CEICW is typically used to create and install the cert, but if
I
wanted to 'manually' create a new cert for a new URL, how would I do it
using
the default installed tools only?
- Follow-Ups:
- Re: How does SBS create RWW certs?
- From: SitsWithMouse
- Re: How does SBS create RWW certs?
- References:
- How does SBS create RWW certs?
- From: SitsWithMouse
- Re: How does SBS create RWW certs?
- From: SteveB
- Re: How does SBS create RWW certs?
- From: SitsWithMouse
- Re: How does SBS create RWW certs?
- From: Dave Nickason [SBS MVP]
- Re: How does SBS create RWW certs?
- From: SitsWithMouse
- Re: How does SBS create RWW certs?
- From: Susan Bradley
- Re: How does SBS create RWW certs?
- From: SitsWithMouse
- How does SBS create RWW certs?
- Prev by Date: Re: Account as a service without Interactive logon?
- Next by Date: Re: EBS
- Previous by thread: Re: How does SBS create RWW certs?
- Next by thread: Re: How does SBS create RWW certs?
- Index(es):
Relevant Pages
|
Loading
