开发者

Location for Installing Certificates

I am just now learning about certificates and how to install them.

I am currntly following instructions as to how to design a profiling system that allows me to access profile information via SOAP envelopes. Accordingly, the instructions are asking me to install the aspnet_db and then the following certificates:

  • 1) IPkey.pfx
  • 2) SubjectKey.pfx
  • 3) LocalHost.pfx

I am instructed to use the MMC snap-in to import the above certs to the "Certificates (Local Computer) / Personal" node.

Then, I am told to use the FindPrivateKey executable to add NETWORKSERVICE.

It may seem like a silly question but, where should I be doing this? Since the instructions started out on the D开发者_开发问答B server, I installed everything there. Is that right? The next section of the instructions is entitled "Setting up an SSL Certificate" (using the localhost cert) and it looks like this is meant for the web server as it talks about IIS.

Thanks.


It depends on the type and purpose of the certificate.

  • If you've generated a request for an HTTPS certificate from the web server then the corresponding certificate should go there.

  • If you've generated a request for a client certificate then it should be installed on the machine that requested in, into the account that requested it.

  • If it's a root certificate then it should be installed on all machines that need to trust certificates issued by the the CA which uses that root certificate.

And that's just the 3 most common scenarios, and even then windows has various certificate store locations you can put them in. There are numerous other certificates types and uses. You either need to be specific or talk to whoever gave you the certificates.


Given the question, he probably means "ssl certificates", in which case: yes, only on the web server.

0

上一篇:

下一篇:

精彩评论

暂无评论...
验证码 换一张
取 消

最新问答

问答排行榜