How To Set Up A Certificate Authority In 10 Minutes

, March 28, 2012 Having a company owned certificate authority makes managing your network devices simpler and more secure. There is nothing inherently wrong with self-signed certs, but you can do better. You can build a CA issue your first certificate in about 10 minutes. Here is how to do it.
  • E-mail

Test it out. Using Firefox, which has a different certificate store than Windows, I get an untrusted message because Firefox doesn't have the root CA certificate installed.

I used Firefox on the certificate server to simulate a remote host and illustrate a point. When I installed Certificate Services on the server, it installed the CA certificate in the local certificate store, which Internet Explorer uses and Firefox does not. If I tested with IE on the same host as the Certificate Server, everything would work properly until I tried to use a browser on a host that didn't have the root CA certificate.

We need to distribute the root CA certificate.


Network Computing encourages readers to engage in spirited, healthy debate, including taking us to task. However, Network Computing moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing/SPAM. Network Computing further reserves the right to disable the profile of any commenter participating in said activities.

 
Disqus Tips To upload an avatar photo, first complete your Disqus profile. | Please read our commenting policy.