 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
Windows Server Forum / Windows 2000 / Security / June 2007Certificate Authority in DMZ
My company is going to distribute their own S/MIME certs instead of paying for Verisign certs every year. We would like to put a Root CA in our network and Sub CA in our DMZ. We would like the Sub CA to be the CA that gives out certs. My understanding is that certificates are stored in a JET database on the CA. This doesn't seem secure considering the CA will be facing the internet. Has anyone else had experience putting a CA in a DMZ? If not, any insight will be appreciated. Nathan Boothe > My company is going to distribute their own S/MIME certs instead of > paying for Verisign certs every year. We would like to put a Root CA [quoted text clipped - 6 lines] > > Nathan Boothe How are the users going to request the certificates? If using the Web enrollment pages, why not just publish the web site to the internet, rather than exposing the CA? Brian |
Reply to this Message |
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2010 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.