We have SE, Edge, and Mediation servers installed and working. We used MS CA Stand Alone Authority installed in the domain to accomplish the certificate requirements.
We are now trying to install Communication Web Access server. The requirements seem to require an Enterprise Root certificate authority. As we still are running in a test environment we do not want to invest in public certificates.
We are a little Certificate impaired so we are not sure how to now install the MS Enterprise Root Authority in the domain without creating problems with all of the other certificates.
Is there a a way to implement the new certificates for the CWA without causing problems with the others? Can another computer in the domain install the Enterprise authority?
2007年4月2日 18:59CWA requires two certificates - one for internal communications (MTLS like you other server roles) and one for the web-facing application. I am not sure what part of the documentation you are referring to, but that public cert ideally is public so that connecting clients do not receive an warning. However, this can be an internal certificate too. As for adding an additional CA, the service is a foret-wide role and you should not have installed more than one for things to function correctly. If you wanted to "upgrade" to an Enteprise CA, you would need to uninstall you exisiting CA and then install the Enterprise CA services on an Enterprise server (killing all your issued certs).
2007年6月6日 16:53Doug could you please provide some insight into how you go the MS CA as the root working with the edge server certificates? Thanks!