Issuing Client Certificates



Short of putting the certificate on a disk and mailing it to users, what is
the best/most secure way to get a client certificate for a website to a
user? Thanks.




Shawn Rabourn \(MS\)

Depending on how many people you expect to be using your web site, it may be
more cost-effective to go through a third party to get a web server
certificate. If your expected audience is small, you may want to publish
that public key on a different web site or publish it on the SSL web site
itself and instruct users to ignore the IE message the first time and
install the certificate. When it comes to security, the certificate is
merely a wrapper for the public key which is useless for any malicious
intent without the private key so any means of delivery is appropriate.

This posting is provided "AS IS" with no warranties and confers no rights.

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads