Windows Security
  Home arrow Windows Security arrow Implementing a PKI, Part III: Managing Mic...
Iron Speed
ASP Free Forums 
.NET  
ASP  
ASP Code  
ASP.NET  
ASP.NET Code  
BrainDump  
C#  
Code Examples  
Database  
Database Code  
IIS  
Microsoft Access  
MS SQL Server  
Visual Basic.NET  
Windows Scripting  
Windows Security  
XML  
ASP Web Hosting  
ASP.NET Web Hosting 
Dedicated Servers 
Download TestComplete 
Windows Web Hosting
 
IBM® developerWorks 
Weekly Newsletter
 
Developer Updates  
Free Website Content 
 RSS  Articles
 RSS  Forums
 RSS  All Feeds
Write For Us Get Paid 
Request Media Kit
Contact Us 
Site Map 
Privacy Policy 
Support 
 USERNAME
 
 PASSWORD
 
 
  >>> SIGN UP!  
  Lost Password? 
WINDOWS SECURITY

Implementing a PKI, Part III: Managing Microsoft Certification Services
By: Eliana Stavrou
  • Search For More Articles!
  • Disclaimer
  • Author Terms
  • Rating: 4 stars4 stars4 stars4 stars4 stars / 10
    2005-02-01

    Table of Contents:
  • Implementing a PKI, Part III: Managing Microsoft Certification Services
  • Certification Authority Management
  • Certificate Revocation List (CRL) publication
  • Configure Root CA Certificate Properties
  • Configure CRL’s Distribution Points
  • Configure AIA Distribution Points

  • Rate this Article: Poor Best 
      ADD THIS ARTICLE TO:
      Del.ici.ous Digg
      Blink Simpy
      Google Spurl
      Y! MyWeb Furl
    Email Me Similar Content When Posted
    Add Developer Shed Article Feed To Your Site
    Email Article To Friend
    Print Version Of Article
    PDF Version Of Article
     
     
     
    ADVERTISEMENT

    Free Web 2.0 Code Generator! Generate data entry and reporting .NET Web apps in minutes. Quickly create visually stunning, feature-rich apps that are easy to customize and ready to deploy. Download Now!

    Implementing a PKI, Part III: Managing Microsoft Certification Services
    (Page 1 of 6 )

    In our third and final article about implementing a public key infrastructure, Eliana Stavrou explains the importance of managing certification services, and how to do it correctly. Will the administration procedures you have in place work -- or will they lead to security risks that you won't know about until it's too late? Read on to find out.

    Introduction

    By now you should have implemented your own Certification Authority (CA) discussed in part I of this article, and configured your Internet Information Server (IIS) and client Web browsers discussed in part II of this article.

    Beyond the implementation of the CA server, I feel that it is equally important to provide information regarding the management of the certification services. Without the proper management you create a leaky bucket; you may have developed a PKI infrastructure and think that you are secure, but without the proper administration of procedures you may end up with a bucket leaking security under your nose.

    Web Interface

    Clients communicate with the Certification Authority server using their Web browser. Recall that you may use the Web interface of Microsoft’s Certification Services in order to:

    • Request a digital certificate

    • View the status of a pending certificate request, or

    • Download a CA certificate or a Certificate Revocation List (CRL)

    More Windows Security Articles
    More By Eliana Stavrou


     

    WINDOWS SECURITY ARTICLES

    - Advanced Data Protection in Windows
    - Basic Data Protection in Windows
    - Windows XP Security
    - Lucky You, Microsoft has Sent You an Email! ...
    - Implementing a PKI, Part III: Managing Micro...
    - Windows 2000 Security
    - A Security Roadmap
    - Implementing a Public Key Infrastructure (PK...
    - Hardening Communications
    - Windows Host Security: Network Security Hacks
    - Hardening Wireless LAN Connections, Part 2
    - Hardening Wireless LAN Connections Part 1
    - Windows Reverse Engineering
    - Microsoft's Latest Security Updates -- The G...
    - Cross Site Scripting (XSS): An Overview




    © 2003-2008 by Developer Shed. All rights reserved. DS Cluster 2 hosted by Hostway