Currently, we are using external partyâs SSL certificate to secure our web
sites but for our SSL VPN appliance, the vendor said that we could use
Microsoft certificate. But I am not sure whether there is any impact between
the two or the best way to set up the CA server, as I am new to Microsoft CA.
Please advise. Thanks!
The issue is simply that a commercial certificate is automatically trusted
by clients, whereas your internal certificate is not.
If the SSL VPN is for internal use on clients you control, you have the
option of distributing your certificate to the clients or making your CA a
trusted authority. You may not have this option, for example, on a partner
extranet.
It is really much easier just to purchase the certificate, except for
development or very small scale use, or if you intend to use the internal CA
very widely for other things.
Anthony -
http://www.airdesk.co.uk
"Wilson"
news:2C04FD2B-FAF0-4FFE-91B0-FDA9BB6403F4@microsoft.com...
> Currently, we are using external party's SSL certificate to secure our web
> sites but for our SSL VPN appliance, the vendor said that we could use
> Microsoft certificate. But I am not sure whether there is any impact
> between
> the two or the best way to set up the CA server, as I am new to Microsoft
> CA.
>
> Please advise. Thanks!
>