Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Wireless Networking > Public Key Infrastructure

Reply
Thread Tools

Public Key Infrastructure

 
 
Rhyd911@gmail.com
Guest
Posts: n/a
 
      09-12-2005
I am going down the path of designing a PKI.

Initially it will be used to provide SSL for OWA and Citrix but will be
used for secure logon to AD in the future.

The architecture I have come up with after some reading is to install a
Stand-Alone Root CA, publish the CRL and Root Certificate to AD, then
install an Enterprise Subordinate Issuing CA to provide the secure AD
function for the internal users. The Stand-Alone Root would then be
secured off the network.

I would then have another Stand-Alone CA in the DMZ to provide the
certificates for SSL and any future VPN requirements from external
parties.

Does this sound reasonable to the CA knowledgeables out there? Also I
had intended for the DMZ CA to be another Stand-Alone Root but have
read articles stating that this could also be a subordinate Stand-Alone
CA.

TIA,
R.

 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
microsoft.public.certification, microsoft.public.cert.exam.mcsa, microsoft.public.cert.exam.mcad, microsoft.public.cert.exam.mcse, microsoft.public.cert.exam.mcsd loyola MCSE 4 11-15-2006 02:40 AM
microsoft.public.certification, microsoft.public.cert.exam.mcsa, microsoft.public.cert.exam.mcad, microsoft.public.cert.exam.mcse, microsoft.public.cert.exam.mcsd loyola Microsoft Certification 3 11-14-2006 05:18 PM
microsoft.public.certification, microsoft.public.cert.exam.mcsa, microsoft.public.cert.exam.mcad, microsoft.public.cert.exam.mcse, microsoft.public.cert.exam.mcsd loyola MCSD 3 11-14-2006 05:18 PM
microsoft.public.certification, microsoft.public.cert.exam.mcsa, microsoft.public.cert.exam.mcad, microsoft.public.cert.exam.mcse, microsoft.public.cert.exam.mcsd realexxams@yahoo.com Microsoft Certification 0 05-10-2006 02:35 PM
microsoft.public.dotnet.faqs,microsoft.public.dotnet.framework,microsoft.public.dotnet.framework.windowsforms,microsoft.public.dotnet.general,microsoft.public.dotnet.languages.vb Charles A. Lackman ASP .Net 1 12-08-2004 07:08 PM



Advertisments