Solved

Internal Certificates for multiple SonicWalls

Posted on 2009-06-27
5
907 Views
Last Modified: 2012-05-07
Noob question.

So I have 16 Sonicwalls on my network, all vpns are setup correctly and everything works as is.  I've been tasked with setting up the Content Filter Service (which I got up and running and working well) Next they want different group access levels, also got this setup and working properly (managers aren't filtered much, lowbies are heavily filtered) but the boss wants user authentication turned up so we can track everything.  Got this working with LDAP integration with my AD no problems there.  But the one problem I have is that all the sonicwalls (PRO 1260s and TZ 170s) are all using self signed certs. So whenever ever any one opens a browser they get the "There is a problem with this website's security certificate.  The security certificate presented by this website was not issued by a trusted certificate authority. " error, I know that you can click "Continue to this website (not recommended). " and everything works fine, but my users freaked out. I know that I could purchase a bunch of certs from a trusted CA, but this is all internal.  Can I setup some sort of internal CA so that I can issue certs to the sonicwalls and have them be trusted by my internal network?

I know very little about certs, I've installed 3rd party certs for my mail and web server, but that's pretty straight forward, I have no idea where to begin looking for a solution to this one.

Any help appreciated.

Cheers,

Brian
0
Comment
Question by:mobious74
  • 2
  • 2
5 Comments
 
LVL 23

Expert Comment

by:ComputerTechie
Comment Utility
Have you tried Tools, Internet Options, Advanced?
In the Security section there is an option "Warn about certificate address mismatch"

CT
0
 

Author Comment

by:mobious74
Comment Utility
That's one option, but that would require touching each PC. As half of my boxes aren't on the domain (lab boxes) and they're in different cities, I'm hoping for a solution that wouldn't require going to each box.
0
 
LVL 2

Assisted Solution

by:zoltan9992000
zoltan9992000 earned 200 total points
Comment Utility
Have you tried adding the certificate to your certificate store - add to the Trused Root Certificate Store.

This should stop the message appearing - providing the details on the cert match the details of the server.
0
 
LVL 23

Accepted Solution

by:
ComputerTechie earned 300 total points
Comment Utility
you can make the changue using gpo if i remember correctly.

CT
0
 

Author Closing Comment

by:mobious74
Comment Utility
Sorry this took so long, I setup a Microsoft CA server and pushed it to the Trusted Root using GPO and on the machines that are not on the domain I manually added them to the Trusted Root...thanx all.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Join & Write a Comment

Suggested Solutions

Imagine a situation that you have installed SSL (http://en.wikipedia.org/wiki/Secure_Sockets_Layer) Certificate on your Cisco ASA (Cisco Adaptive Security Appliance) firewall. Installation of SSL certificate on ASA is an another topic for which you …
this article is a guided solution for most of the common server issues in server hardware tasks we are facing in our routine job works. the topics in the following article covered are, 1) dell hardware raidlevel (Perc) 2) adding HDD 3) how t…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now