Internal Certificates for multiple SonicWalls
Posted on 2009-06-27
So I have 16 Sonicwalls on my network, all vpns are setup correctly and everything works as is. I've been tasked with setting up the Content Filter Service (which I got up and running and working well) Next they want different group access levels, also got this setup and working properly (managers aren't filtered much, lowbies are heavily filtered) but the boss wants user authentication turned up so we can track everything. Got this working with LDAP integration with my AD no problems there. But the one problem I have is that all the sonicwalls (PRO 1260s and TZ 170s) are all using self signed certs. So whenever ever any one opens a browser they get the "There is a problem with this website's security certificate. The security certificate presented by this website was not issued by a trusted certificate authority. " error, I know that you can click "Continue to this website (not recommended). " and everything works fine, but my users freaked out. I know that I could purchase a bunch of certs from a trusted CA, but this is all internal. Can I setup some sort of internal CA so that I can issue certs to the sonicwalls and have them be trusted by my internal network?
I know very little about certs, I've installed 3rd party certs for my mail and web server, but that's pretty straight forward, I have no idea where to begin looking for a solution to this one.
Any help appreciated.