How To Set Up A Certificate Authority In 10 Minutes, March 28, 2012 Having a company owned certificate authority makes managing your network devices simpler and more secure. There is nothing inherently wrong with self-signed certs, but you can do better. You can build a CA issue your first certificate in about 10 minutes. Here is how to do it.
Test it out. Using Firefox, which has a different certificate store than Windows, I get an untrusted message because Firefox doesn't have the root CA certificate installed.
I used Firefox on the certificate server to simulate a remote host and illustrate a point. When I installed Certificate Services on the server, it installed the CA certificate in the local certificate store, which Internet Explorer uses and Firefox does not. If I tested with IE on the same host as the Certificate Server, everything would work properly until I tried to use a browser on a host that didn't have the root CA certificate.
We need to distribute the root CA certificate.