?
Solved

step-by-step on installing stand alone CA

Posted on 2005-04-05
6
Medium Priority
?
485 Views
Last Modified: 2010-05-18
Does anyone know where I can find a good white paper on setting up a stand-alone CA to issue certificates for use with RPC over HTTP.
I have the rest of the RPC over HTTP settings configured but I need to set up the SSL and I haven't done this before.

I just want to put the CA on the exchange server. We have a seperate DC from the Exchange, but it's s single Exchange server environment.
0
Comment
Question by:wlandymore
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 104

Expert Comment

by:Sembee
ID: 13708209
If you are doing this for RPC/HTTPS let me save you a lot of problems.

Don't do it with a home grown certificate.

Purchase one instead - you can get a StarterSSL from RapidSSL which is fine.

Simon.
0
 
LVL 1

Author Comment

by:wlandymore
ID: 13709416
I was just thinking of cost. I mean why pay for something that can be implemented for free?
I see what you are saying about trying to save some headaches though.

If I was going to buy something like the RapidSSL, how is it installed once they issue it?
I imagine they tell you about that, but is it a fairly simple process?
0
 
LVL 1

Author Comment

by:wlandymore
ID: 13709903
Also, does RPC over HTTP have to be used in conjunction with an Exchange account or could you set it up to use something like IMAP?
I only ask because I know there are a coupld of people here that would like to be able to use their TREO for sending and receiving. At the moment it will receive through the IMAP but it won't send because of the ISP's restrictions on port 25. If I get RPC over HTTP working that will enable people to use the IMAP server for incoming and outgoing, but I wasn't sure in the case of the treo. This model can only use IMAP or POP3. Will that work with RPC over HTTP?
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
LVL 104

Accepted Solution

by:
Sembee earned 200 total points
ID: 13709909
The process is very simple - they have a white paper that goes through the entire process.

While I suspect that it is possible to get it working with a free solution I gave up after about 6 hours. At my hourly rate it wasn't worth continuing.
I put a trial certificate in place and it was working in less than 10 minutes.

The major problems with using a home grown certificate are trust issues. You have to get your certificate trusted by Internet Explorer. This can be troublesome, depending on how you are doing it, and isn't really a practical way of deploying the technology.

Furthermore, purchase a certificate, it will be protecting OWA as well and allows you to deploy OWA without having to worry about certificate warnings. Looks a lot more professional.

Simon.
0
 
LVL 104

Expert Comment

by:Sembee
ID: 13710058
RPC over HTTPS is for MAPI connections only. You have to be using the full version of Outlook. Therefore it isn't suitable for use with the handhelds.

The best thing you could do with the handhelds is to use OMA, which will send any email via the Exchange server.

Simon.
0
 
LVL 1

Author Comment

by:wlandymore
ID: 13710215
thanks for all the help
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
There are times when we need to generate a report on the inbox rules, where users have set up forwarding externally in their mailbox. In this article, I will be sharing a script I wrote to generate the report in CSV format.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question