Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

SSL Certificate, client authentication

Posted on 2013-12-18
3
Medium Priority
?
323 Views
Last Modified: 2014-01-16
Hi Experts.

Looking your help.
I want to setup certificate authentication for VPN users.
I installed standalone Root CA exported, Root CA certificate configured and exported.
Can you please help me out how to create client authentication certificate (Client Certificates, appreciated if you can me the step by step guide
0
Comment
Question by:Skumar_CCSA
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 1500 total points
ID: 39728903
This is the third time you've asked this question (at least) :) I don't think the issue is setting up a CA for you as much as it is getting the certs installed and pushed to your clients. CA's are generally not available as public servers, so you have to have some mechanism to get those certs installed. Setting up a CA is easy:
http://pages.cs.wisc.edu/~zmiller/ca-howto/
http://msdn.microsoft.com/en-us/library/ms755466%28v=vs.85%29.aspx

Or purchase certs from a 3rd paty:
https://www.verisign.com/ts-sem-page/?sl=UY937-0000-01-00&gclid=CITS66yavLsCFQlgMgodNUQAew

You then have to get the certs to the clients, or have them pre-installed.
-rich
0
 

Author Comment

by:Skumar_CCSA
ID: 39729431
Hi Rich..

Firstly I want to deploy own SSL certificates, there is something has to be done somewhere in CA server or VPN appliance which is being vital for implementation.

Not buying certificates...let's see some time...
0
 

Author Closing Comment

by:Skumar_CCSA
ID: 39787508
HI rich...
Thanks...
problem solved.
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot has fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question