On Jul 23, 2008, at 10:57 AM, Charles Bacon wrote:
What's so different about running simpleauthority or openca from simpleca? I thought part of your point was that users should be using 'official' CAs rather than running their own.
Well, in practice, I have found that it (simpleauthority) provides users with a friendly GUI and issues RFC 5280-compliant certificates that can easily be configured to conform to IGTF/OGF guidelines out of the box.
9/10ths of the problems I see users complaining about with their own simpleCA-generated certificates are there because they do non- recommended things, or have trouble running the software. I don't have anything to do with SimpleAuthority but find in the field that it reduces questions when showing people what to do.
It could be listed in a "further links" section, I suppose. I'd feel better about recommending it if it were open source, but it does have a free low-use option.
To Tom: I don't think SAML as a starting point is there yet. Alan Alan Sill, Ph.D TIGRE Senior Scientist, High Performance Computing Center Adjunct Professor of Physics TTU ==================================================================== : Alan Sill, Texas Tech University Office: Admin 233, MS 4-1167 : : e-mail: [EMAIL PROTECTED] ph. 806-742-4350 fax 806-742-4358 : ====================================================================
