Re: hardening a windows server
Guest
Posts: n/a
Posts: n/a
Note from Microsoft:
Windows 2000 smart card logon requires a Microsoft Certificate Authority
(CA) configured with the enterprise policy module. Stand-alone CAs are not
supported.
Guidelines for Enabling Smart Card Logon with Third-Party Certification
Authorities
http://support.microsoft.com/default...b;EN-US;281245
--
Mike
MCSA 2K, MCSE 2K, MCT, ...
"Ulf Grahn" <ulf.grahn@riksbank.se> wrote in message
news:0b4401c352b3$97635940$a301280a@phx.gbl...
> Hi
>
> We will use the CA for smart card certificats used to
> logon to windows, so i guess it's a enterprise CA we will
> need! I'm i right?
>
> //Uffe
>> >-----Original Message-----> (Enterprise CA CAN be
> >Hi Ulf,
> >
> >it also depends if this will be an Enterprise CA> >subordinate to some other CA). If you will need> Enterprise CA then it has to> >me a member server ...> servers in domain or
> >
> >I believe that it is equally possible to deploy secure> >as stand alone.> infrastructure in
> >
> >If you haven't read how Microsoft implemented their CA> >Wind2K3 I strongly recommend the article...> url=/technet/itsolutions/msit/security/mspki.asp
> >http://www.microsoft.com/technet/treeview/default.asp?> >> servers!
> >--
> >Mike
> >MCSA 2K, MCSE 2K, MCT, ...
> >
> >"Ulf Grahn" <ulf.grahn@riksbank.se> wrote in message
> >news:07a901c3529e$48ff30e0$a601280a@phx.gbl...> >> Hi
> >>
> >> I have a question about best practice for secure> standalone?> >> Wath is the best way to secure a server regarding
> >> membership in the domain vs. configured to be> >> The server will have the role of subordinate CA in a PKI> >
> >> implementation.
> >>
> >> Regards
> >>
> >> Ulf Grahn
> >
> >.
> >
Linear Mode
