SAAM Posted February 8, 2015 Share Posted February 8, 2015 Hi, I need help in implementing SSL certificate from a public CA. I want to install a SSL Certificate on our internal windows server which is accessed from outside. and issue the client certificates to the client who will install the certificate on there devices. so that only with valid certificates can able to access the server. Is this possible and if yes, where i will define the policy that clients with valid certificate can access the server. Thanks Link to comment Share on other sites More sharing options...
Jones111 Posted February 8, 2015 Share Posted February 8, 2015 Please describe what you're trying to achieve. Are you talking about a Webserver with IIS, vpn connections, ras, Remote Desktop Services or something else? Link to comment Share on other sites More sharing options...
SAAM Posted February 8, 2015 Author Share Posted February 8, 2015 we have two servers, one is IIS, second is Avaya Video Conference Link to comment Share on other sites More sharing options...
+BudMan MVC Posted February 9, 2015 MVC Share Posted February 9, 2015 you want to use ssl auth.. From a public CA, you normally would have a pki with a company to issue the certs than. We at one time had this this with thawte - but you ca do this internally for free with AD CA. Link to comment Share on other sites More sharing options...
SAAM Posted February 9, 2015 Author Share Posted February 9, 2015 Yes i have a 14 days trial of DIGICERT MPKI. But how to authenticate devices using certificate when they will access the server from internet. If i will install server certificate on the server and do the port forwarding on the firewall and then install a client certificate on the device. The problem where i have to assign the policies. Link to comment Share on other sites More sharing options...
+BudMan MVC Posted February 9, 2015 MVC Share Posted February 9, 2015 http://www.iis.net/configreference/system.webserver/security/authentication/iisclientcertificatemappingauthentication Link to comment Share on other sites More sharing options...
+BudMan MVC Posted February 18, 2015 MVC Share Posted February 18, 2015 ^ yeah not what the OP is asking about.. Link to comment Share on other sites More sharing options...
Recommended Posts