We issue a large number of certificates from our subordinate CA to various in-house and 3rd-party offsite systems to encrypt traffic between systems, typically LDAPs. We've had Microsoft Premier Support in to clean up our certificate infrastructure, and they did a great job. Certificate infrastructure has been solid and working as expected.
Our challenge is that with the number of certificates expiring and the variety of systems we have, generating new certificates that are able to be imported by other systems is sometimes challenging, as is the seemingly simple task of tracking the certificate expirations. Linux systems, in particular, don't seem to like the certificates very well, but we usually persevere and get them to work. Is there a commercial application or service that can help us to manage the certificate renewals and generate the correct certificates for the systems to which we supply certificates? The Premier engineer did not know of anything commercial, and all of the freeware I found was not reliable enough for me to trust it to work on a regular basis. I'm hoping that someone else has experienced this same frustration and found a working answer. Going to ADFS is not feasible at this time, nor do all of the systems we issue certificate to honor ADFS. Regards, all. Michael Merker Director of Technology Infrastructure Voice (561) 868-3252 Fax (561) 868-3259 [email protected]<mailto:[email protected]> Palm Beach State College 4200 Congress Avenue Lake Worth, FL 33461 ________________________________ Please note: Due to Florida's broad open records law, most written communication to or from College employees is public record, available to the public and the media upon request. Therefore, this e-mail communication may be subject to public disclosure.
