Test it out. Using Firefox, which has a different certificate store than Windows, I get an untrusted message because Firefox doesn't have the root CA certificate installed.
I used Firefox on the certificate server to simulate a remote host and illustrate a point. When I installed Certificate Services on the server, it installed the CA certificate in the local certificate store, which Internet Explorer uses and Firefox does not. If I tested with IE on the same host as the Certificate Server, everything would work properly until I tried to use a browser on a host that didn't have the root CA certificate.
We need to distribute the root CA certificate.
Mike Fratto is a principal analyst at Current Analysis, covering the Enterprise Networking and Data Center Technology markets. Prior to that, Mike was with UBM Tech for 15 years, and served as editor of Network Computing. He was also lead analyst for InformationWeek Analytics ... View Full Bio