+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 16
Web Development Thread, Web certificate in Coding and Web Development; Has anyone had any experience of obtaining a web certificate. I am trying to make exchange available remotley and this ...
  1. #1
    edie209's Avatar
    Join Date
    Mar 2006
    Location
    Kernow
    Posts
    705
    Thank Post
    42
    Thanked 19 Times in 18 Posts
    Rep Power
    22

    Web certificate

    Has anyone had any experience of obtaining a web certificate. I am trying to make exchange available remotley and this will the first thing I need to set this up.

  2. #2
    Abaddon's Avatar
    Join Date
    Mar 2006
    Location
    Middlesex
    Posts
    623
    Thank Post
    74
    Thanked 70 Times in 65 Posts
    Rep Power
    61

    Re: Web certificate

    We have both a Thawte Certificate (for the Citrix portal), and an in-house certificate for the Web Access component of Exchange... it's easily done by setting up your own CA. As it will only be your users accessing it, and presumably trusting you, wouldn't that be ok for you?

  3. #3
    Joedetic's Avatar
    Join Date
    Jan 2006
    Location
    Walsall
    Posts
    1,316
    Thank Post
    6
    Thanked 13 Times in 13 Posts
    Rep Power
    23

    Re: Web certificate

    Set up the CA server stuff that comes with windows server 2k3. I find it easiest to create a wildcard cert because it'll be easiest to transfer to your other servers.

    Eg *.school.org

    So that would allow you to use it for vle.school.org, exchange.school.org etc

  4. #4
    edie209's Avatar
    Join Date
    Mar 2006
    Location
    Kernow
    Posts
    705
    Thank Post
    42
    Thanked 19 Times in 18 Posts
    Rep Power
    22

    Re: Web certificate

    Thanks guys just found that, probably the same time as you posted. Does anyone pay for their certificate?

  5. #5


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,033 Times in 813 Posts
    Rep Power
    341

    Re: Web certificate

    Thanks guys just found that, probably the same time as you posted. Does anyone pay for their certificate?
    Wildcard certs are £769 for 2yrs or £150 for single certs here:
    http://www.precedence.co.uk/internet/ssl/#prices

  6. #6

    Norphy's Avatar
    Join Date
    Jan 2006
    Location
    Harpenden
    Posts
    2,580
    Thank Post
    59
    Thanked 370 Times in 286 Posts
    Blog Entries
    7
    Rep Power
    134

    Re: Web certificate

    Ramesys are setting us up a Sharepoint/Class Server based VLE and a 2 year signed certificate came as part of the deal. However, in the meantime for external access to our OWA I'm using an internal CA and just telling people to trust the certificate

  7. #7

    Join Date
    Feb 2006
    Posts
    1,187
    Thank Post
    0
    Thanked 1 Time in 1 Post
    Rep Power
    0

    Re: Web certificate

    May be I was dreaming but isn't there someway of carrying the ceritficate on removable media? I only mention this if staff are very nervous about trusting a site which says it's the schools site.

  8. #8

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,850
    Thank Post
    110
    Thanked 598 Times in 514 Posts
    Blog Entries
    1
    Rep Power
    227

    Re: Web certificate

    I just generate one on our Certificate Server (A linux box running OpenSSL).

  9. #9
    sahmeepee's Avatar
    Join Date
    Oct 2005
    Location
    Greater Manchester
    Posts
    795
    Thank Post
    20
    Thanked 70 Times in 42 Posts
    Rep Power
    34

    Re: Web certificate

    Quote Originally Posted by Geoff
    I just generate one on our Certificate Server (A linux box running OpenSSL).
    And it's automatically trusted by their web browsers at home?? Presumably they have to agree to trust it as Norphy says.

  10. #10

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,850
    Thank Post
    110
    Thanked 598 Times in 514 Posts
    Blog Entries
    1
    Rep Power
    227

    Re: Web certificate

    Not my problem(tm). There is a reverse proxy between the webserver and the rest of the universe. That runs a seperate HTTPS session I have no control over.

    For example. Try going to our VLE.

    https://vle.carrhill.lancs.sch.uk

    You will notice (if you examine it) that the certificate is issued by CLEO (our RBC) not me/my school.

    Internally everything is happy because we push out our own root CA certificates via active directory.

  11. #11

    Join Date
    May 2006
    Posts
    159
    Thank Post
    5
    Thanked 10 Times in 5 Posts
    Rep Power
    19

    Re: Web certificate

    Ouch...high price...

    I recently got a certificate for our OWA box...UK company...took about 5 minutes online, trusted by default in IE (no warnings)

    $69, get it from here

    http://www.rapidssl.com/ssl-certific...e-rapidssl.htm

  12. #12
    Joedetic's Avatar
    Join Date
    Jan 2006
    Location
    Walsall
    Posts
    1,316
    Thank Post
    6
    Thanked 13 Times in 13 Posts
    Rep Power
    23

    Re: Web certificate

    Personally i dotn see the problem with putting something on the page with the link saying that it give the warnings but to look in the URL bar to see see an address shown in a print screen below. Saves you a lot of money......

  13. #13

    Join Date
    Jan 2006
    Location
    Surburbia
    Posts
    2,178
    Thank Post
    74
    Thanked 307 Times in 243 Posts
    Rep Power
    116

    Re: Web certificate

    I definitely would NOT pay for a cert for Exchange.. roll your own, write a little guide on how to install the CA cert... and if you're really keen on improving their behaviour, tell them how to verify the fingerprint on the CA cert before they install it. The only time this is a bit more painful is when you're getting MS-based PDAs to talk to Exchange over SSL (you must get your CA cert onto those for it to work).

    Once upon a time I used OpenSSL to make better authentication certs than Windows would (coz of the US crypto-export regs), but nowadays I'd stick with Cert Services for most Windows scenarios.

  14. #14
    edie209's Avatar
    Join Date
    Mar 2006
    Location
    Kernow
    Posts
    705
    Thank Post
    42
    Thanked 19 Times in 18 Posts
    Rep Power
    22

    Re: Web certificate

    Thanks for the replies

  15. #15
    sahmeepee's Avatar
    Join Date
    Oct 2005
    Location
    Greater Manchester
    Posts
    795
    Thank Post
    20
    Thanked 70 Times in 42 Posts
    Rep Power
    34

    Re: Web certificate

    Quote Originally Posted by Geoff
    For example. Try going to our VLE.

    https://vle.carrhill.lancs.sch.uk

    You will notice (if you examine it) that the certificate is issued by CLEO (our RBC) not me/my school.
    Yep, they're too cheap to buy one from a certificate authority, so they've just issued a wildcard one themselves. I'm hoping our LEA will buy a proper wildcard one for ourtown.sch.uk - I wouldn't object to stumping up part of the cost.



SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. https:// Certificate Error: How Do We Eliminate It?
    By DaveP in forum How do you do....it?
    Replies: 9
    Last Post: 25th October 2007, 02:15 PM
  2. Affordable SSL certificate
    By meastaugh1 in forum Recommended Suppliers
    Replies: 6
    Last Post: 17th December 2006, 05:27 PM
  3. Certificate Authority
    By plexer in forum *nix
    Replies: 9
    Last Post: 15th October 2006, 01:57 AM
  4. How to get a wireless network certificate onto a HP PDA
    By woody in forum Wireless Networks
    Replies: 4
    Last Post: 10th October 2006, 02:49 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •