all groups > iis security > may 2004 >
You're in the

iis security

group:

connection CA server and web server


connection CA server and web server fong
5/5/2004 8:50:51 PM
iis security:
Currently I have a win2k web server with secure server ID
installed and hosting web page www.abc.com. I have tested
browsed to the web site by key in web site
https://www.abc.com and it was working fine. The
connection is as below:


Client web browser < ------------------ > web server
https://www.abc.com


Now I would like to enhance the security by introduce
digital certificate for client. I managed to setup an
additional stand-alone CA server (windows 2000 server) and
able to do the following tasks.

1. User access to stand alone CA server to request for
certificate.
2. System Administrator manually approves the user request.
3. User connects to the CA server again to download and
install certificate into web browser.


My questions are:
1. How to setup the connection for CA server and web server
2. How is the over all connection look like? (connection
A, B or C)
3. How to do the authentication?

Connection A

Client web browser < -----> CA server < ---- > web server


Connection B

Client web browser < ---- > web server < ---- > CA server


Connection C

Client web browser < --------- > web server & CA server

Re: connection CA server and web server Ken Schaefer
5/6/2004 3:27:15 PM
Hi,

The following should help:

http://support.microsoft.com/default.aspx?scid=kb;EN-US;257591
Description of the Secure Sockets Layer (SSL) Handshake

http://support.microsoft.com/default.aspx?scid=kb;EN-US;257586
Description of the Client Authentication Process During the SSL Handshake

http://support.microsoft.com/?id=257587
Description of the Server Authentication Process During the SSL Handshake

Cheers
Ken

[quoted text, click to view]
: Currently I have a win2k web server with secure server ID
: installed and hosting web page www.abc.com. I have tested
: browsed to the web site by key in web site
: https://www.abc.com and it was working fine. The
: connection is as below:
:
:
: Client web browser < ------------------ > web server
: https://www.abc.com
:
:
: Now I would like to enhance the security by introduce
: digital certificate for client. I managed to setup an
: additional stand-alone CA server (windows 2000 server) and
: able to do the following tasks.
:
: 1. User access to stand alone CA server to request for
: certificate.
: 2. System Administrator manually approves the user request.
: 3. User connects to the CA server again to download and
: install certificate into web browser.
:
:
: My questions are:
: 1. How to setup the connection for CA server and web server
: 2. How is the over all connection look like? (connection
: A, B or C)
: 3. How to do the authentication?
:
: Connection A
:
: Client web browser < -----> CA server < ---- > web server
:
:
: Connection B
:
: Client web browser < ---- > web server < ---- > CA server
:
:
: Connection C
:
: Client web browser < --------- > web server & CA server
:
:

Got something to say? Click here to post a reply to this thread.
Don't see what you're looking for? Try a search.
View other messages in the iis security group.
AddThis Social Bookmark Button
View Other Months
June 2003
July 2003
August 2003
September 2003
October 2003
November 2003
December 2003
January 2004
February 2004
March 2004
April 2004
May 2004
June 2004
July 2004
August 2004
September 2004
October 2004
November 2004
December 2004
January 2005
February 2005
March 2005
April 2005
May 2005
June 2005
July 2005
August 2005
September 2005
October 2005
November 2005
December 2005
January 2006
February 2006
March 2006
April 2006
May 2006
June 2006
July 2006
August 2006
September 2006
October 2006
November 2006
December 2006
January 2007
February 2007
March 2007
April 2007
May 2007
June 2007
July 2007
August 2007
September 2007
October 2007
November 2007
December 2007
January 2008
February 2008
March 2008
April 2008
May 2008
June 2008
home · blog · groups Questions? Comments? Contact the dn