I am needing to export current SSL certificates from items such as my Sonicwall and WatchGuard appliance. I need to install them to the machines needing to access them. So they don’t get that pop screen saying you may be getting hacked or whatever.
I would also like suggestions or articles on setting up the distribution of these certificates via GPO if possible. Do you have other suggestions on this topic? Do most people install the certificate that came with the devices, such as routers, which are accessed internally or do they typically still go through and get one as if it were being used external. I have an SSL for my external addresses that are used but getting tired of that stupid screen for me and my users.
3 Spice ups
Most of these apps should have a management console/tools. Check on the vendor software and download them and they should have option to export the SSL.
Usually, you will need to create SSL from the machine and import to these appliance in order for the appliances to create the SSL for the machine.
1 Spice up
justin1250
(Justin1250)
3
Do you have a Windows CA server?
Deploy Client Computer Certificates
1 Spice up
I have SBS 2011 running Server 2008R2 and then two other servers, also Server 2008R2. Does Windows CA server come with Server 2008R2?
justin1250
(Justin1250)
5
I believe Server08 R2 Standard comes with the ability to use the CA role.
Mines 2012 but it was very worth it to get everything set up.
maxsec
(maxsec)
6
If the cersmts have been properly signed and installed you shouldnt need to deploy them out
timmwatts
(timmwatts)
7
Use a local PKI service to manage ssl certs
What is properly signed? They are self signed. They are not from an official CA like godaddy or the others. The one I got from godady for email and web is fine.
Local pki service? Is the local on the server then? Well that push it out too my users computers?
How do I push certificates out to my PCs?
