Recommended way to distribute Certificates?

Recommended way to distribute Certificates? (Full Version)

All Forums >> [Microsoft Exchange 2003] >> Server Security

Message

cobritek -> Recommended way to distribute Certificates? (26.Jun.2008 10:05:36 AM)
I have set up a CA and distributed a Cert for OWA. I had to do some research afterwards because even after the certificate was installed for the mail.mydomain.com the website it would still tell the user there is a problem with the cert. I found that the user needs to install the root certificate of the CA to the client. So my question is, what is the recommended way to distribute these certificates for OWA? I think there is an option in CA services to send the cert to a share but some of these users aren't on the internal network.

Sembee -> RE: Recommended way to distribute Certificates? (30.Jun.2008 2:04:32 PM)
Any reason you used your own CA for certificates? It isn't something I tend to recommend for OWA unless you have control over 100% of the clients accessing OWA (which makes the feature pointless). You will always get certificate prompts when a client logs in to a new machine, which I see as a security risk. For OWA use a commercial SSL certificate. No prompts and less headache to deploy. Simon.

Page: [1]