On Fri, 19 Dec 2003 10:21:31 -0800, "Antonio Policelli"
[quoted text, click to view] <blarfoc@yahoo.com> wrote:
>hi thank you but that is just a bunch of links. can you
>help me more specifically?
Sure -- Read the Links!
They have the answers you're looking for, and I don't have to retype
what is already perfectly explained and accessible on the internet.
In fact, the specific questions you asked appear to be answered by:
"What type of warnings can the client see when connecting to a SSL web
site?"
"Error Message: This Security Certificate Was Issued by a Company that
You Have Not Chosen to Trust"
"HOW TO: How to Install/Uninstall a Public Key Certificate Authority
for Windows 2000"
"Step/Step guides about setting up Certificate Services and Mapping
Certficates"
"Generating a Certificate Request File Using the Certificate Wizard in
IIS 5.0"
"Installing a New Certificate with Certificate Wizard for Use in
SSL/TLS"
After you've read the links and done what they tell you, if you still
have specific questions, come back and ask.
Jeff
[quoted text, click to view] >>-----Original Message-----
>>On 19 Dec 2003 07:16:09 -0800, blarfoc@yahoo.com (Antonio
>Policelli)
>>wrote:
>>
>>>i have a non commercial web site on my server that i ask
>users to log
>>>into. they have to pass a name and a password. i want
>to use ssl but
>>>cannot afford to buy it every 2 year.
>>>
>>>can i make my own certificiate for my https? i
>understand that a user
>>>will get a message saying my cert is not from an
>authority when they
>>>go to the web site. that will have to be ok. can each
>one of those
>>>people add to their internet explorer something that
>makes my not
>>>authorized certificate go past ok with no warning
>message?
>>
>>See:
>>
>>
http://www.iisfaq.com/default.aspx?View=P20&P=145 >>
>>Jeff
>>.
>>
If you control both the clients and the server, you can use self-signed SSL
Cert on the server and have the clients trust the server's CA. All other
situations require the purchase of a SSL Cert, which removes the warning
popup.
Try SelfSSL from IIS6 Resource Kit, free download from Microsoft.com to do
the above in one simple step.
http://www.microsoft.com/downloads/details.aspx?FamilyID=56fc92ee-a71a-4c73-b628-ade629c89499&DisplayLang=en --
//David
IIS
This posting is provided "AS IS" with no warranties, and confers no rights.
//
[quoted text, click to view] "Antonio Policelli" <blarfoc@yahoo.com> wrote in message
news:624f68b2.0312190716.53e2206d@posting.google.com...
i have a non commercial web site on my server that i ask users to log
into. they have to pass a name and a password. i want to use ssl but
cannot afford to buy it every 2 year.
can i make my own certificiate for my https? i understand that a user
will get a message saying my cert is not from an authority when they
go to the web site. that will have to be ok. can each one of those
people add to their internet explorer something that makes my not
authorized certificate go past ok with no warning message?
thanks and tell me if i am confusing.
AP!
Hey Antonio,
You can install Microsoft Certificate Services on another machine in your
domain and have it issue the certificates for your websites.
Also, clients will need the CA certificate in their Trusted root
certification authorities store in order for them to not get the warning
about the CA not being trusted.
<
http://support.microsoft.com/default.aspx?scid=kb;en-us;297681> ----
involves providing the CA cert to clients via an ASP page.
<
http://support.microsoft.com/default.aspx?scid=kb;en-us;318620> ----
involves clients installing the CA cert from the dialog which shows the
warning( click on View Cetificate and if the certification path lists the
CA name)
Hope this helps.
Yogita Manghnani
Microsoft Developer Support
Internet Information Server
*********************************************************************
[quoted text, click to view] >>Please do not send email directly to this alias. This is an online
account name for newsgroup participation only.<<
This posting is provided "AS IS" with no warranties, and confers no rights.
You assume all risk for your use.
© 2003 Microsoft Corporation. All rights reserved.
*********************************************************************
