CA Issue

S

Scott25

CSP: eToken base Cryptographic Provider

The smart cards do hold the certificates, but I am not
quite sure from a technical perspective how VPN works.
We set up a VPN connection that uses the smart cards
which hold the certificate. The root certificate also
has to be loaded on to the computer that is VPN'd in.
The VPN is based on the smart cards though.
 
M

Miha Pihler

Scott,

Sorry, but I can't seem to find a way around this... One solution would be
to migrate to Windows 2003 Enterprise CA. There you can edit templates and
change validity period.

Mike
 
A

Amjad.

One more thing. MS CA will not issue a user certificate
whose expiration will be BEYOND the issuing authority
certificate.

If you use 2003 online CA, it contains templates. You may
create a new template by copying an already available one
and modify the validty period issued using the template.
--Amjad.
 
M

Miha Pihler

It's 2000 CA.

If e.g. CA cert is valid till e.g. 1.9.2006 and you have policy (template)
that should issue certificate for 5 years CA will create a certificate that
will be valid for 1.9.2006.

Mike
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

How do you issue a new Root CA Certificate EXPIRATION? 0
Clients cant get new Cert from CA - 0x800b0101 0
Windows XP computer certificate renewal from MS W2k Enterprise CA 3
VPN Logons - Certificates 1
When do ad certificates get renewed 4
CA Problems 6
If/Then Formula Using Dates 1
ipsec with certificate authentication issue 4

Top