I only had to get a third party cert for the external web site (your portal) and one for the Direct Access, Is this an appliance ?
John W. Cook System Administrator Partnership For Strong Families 5950 NW 1st Place Gainesville, Fl 32607 Cell (352) 215-6944 MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4 From: Steve Kistenmacher [mailto:[email protected]] Sent: Thursday, January 20, 2011 5:12 PM To: NT System Admin Issues Subject: RE: Direct Access setup I am trying to get the forefront UAG beast working, ran into the same thing tried to use internal CA then found out about the CRL thing , we use entrust for our commercial certs and asked if they could issue me a temp cert. From: Glen Johnson [mailto:[email protected]] Sent: Thursday, January 20, 2011 5:01 PM To: NT System Admin Issues Subject: RE: Direct Access setup Haven't gotten to that step yet, although I do see that the CRL needs to be accessible externally. Just trying to get a working cert onto an internal IIS7 web server. From: Steve Kistenmacher [mailto:[email protected]] Sent: Thursday, January 20, 2011 4:58 PM To: NT System Admin Issues Subject: RE: Direct Access setup Could be you need to publish the CRL to be accessible from outside, most third party certs are already set up to do this. From: Glen Johnson [mailto:[email protected]] Sent: Thursday, January 20, 2011 4:40 PM To: NT System Admin Issues Subject: Direct Access setup Working through the setup and have hit a wall. Trying to setup the NLS web server and when I install the SSL cert from our internal AD domain cert authority, it appears that the cert isn't intended for a web server. And the IIS7 cert request doesn't allow to select what feature the cert is to be used for. I'm guessing there is a configuration on our cert server that needs tweaked, but I'm not seeing it. Our PKI is working otherwise as computer are using them, laptops are using them for wireless authentication, but this is the first web server I've needed to install one onto. Our other web servers are using commercial certs but for NLS a domain cert should be ok. Any suggestions? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ________________________________ CONFIDENTIALITY STATEMENT: The information transmitted, or contained or attached to or with this Notice is intended only for the person or entity to which it is addressed and may contain Protected Health Information (PHI), confidential and/or privileged material. Any review, transmission, dissemination, or other use of, and taking any action in reliance upon this information by persons or entities other than the intended recipient without the express written consent of the sender are prohibited. This information may be protected by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. Improper or unauthorized use or disclosure of this information could result in civil and/or criminal penalties. Consider the environment. Please don't print this e-mail unless you really need to. This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of the company. Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
