I need to encrypt LAN traffic between 30-40 workstations and a local Win2k3 server running SQL 2000. I am looking at SSL-based encryption
I want to keep things relatively simple from an administration standpoint. Designing an entire PKI solution may be overkill for simply encrypting local network traffic.
I am leaning towards an Enterprise CA and client side encryption. I want to use a self-signed certificate as the encrypted network traffic will be internal and I don't believe the cost and trouble of getting a 3rd-party certificate is necessary.
What do I need to do to get this implemented?
I also would be interested in best practices for certificate creation and management.