Certificate Deployment Group Policy Overview

If you have ever come across one of Internet Explorer's infamous "certificate error" screens (see the image below taken from IE7), then you know how intimidating they can be (especially for your users.)

Certificate errors on your intranet are usually caused by one of two things:

• An expired certificate
• A self signed certificate that was created by an untrusted signing authority
  Note: For the purpose of this discussion, we are only talking about intranet (internal network) certificate errors.  Certificate errors on the web are an entirely different matter.

In the case of a untrusted signing authority, this may not necessarily be a problem since, as the system administrator of the site, you probably created the certificate and know it is safe.  Therefore, you may wish to suppress the default behavior of the browser to prevent your users from seeing the warnings.

Group policy offers a quick and easy way to deploy certificates in the enterprise.  Using a group policy object or GPO, we can deploy certificates to the enterprise without having to visit every machine on the network.  This guide will show you how to override your browser's certificate verification implicitly trusting the signing authority using a GPO.  Lets get to it!

Comments

Add New Search

myname  - mo |15/07/2011 07:59:25 hola Reply | Quote

Write comment
Name:
Email:	do not notifynotify
Website:
Title:
UBBCode:	-color-aquablackbluefuchsiagraygreenlimemaroonnavyolivepurpleredsilvertealwhiteyellow -size-tinysmallmediumlargehuge
	Please input the anti-spam code that you can read in the image.

!joomlacomment 4.0 Copyright (C) 2009 Compojoom.com . All rights reserved."