Recently we decided that we need a Certificate Authority and need to sign all of you internal servers. I went the easy route and spun up a Windows 2008r2 server and added the Cert Authority role, bound it to the domain, and started issuing certs. The problem that I keep running into is that the certs are in the wrong format for our Linux servers and Unix based appliances. I found OpenSSL and was able to convert them to the right format although it was a pain. When I'm done testing I want this to be easy to get a new cert and I want to it to be scalable. I love how all my PCs trust the Cert Authority by default through AD but converting all the certs gets really annoying. Any ideas?
↧
Which Certificate Authority?
↧