OCS and Certificates MTLS TLS and more

Posted on January 13, 2008 by Mitch Roberson

Microsoft has done a great job with OCS and making setting up the certificates much easier. Which I think is fantastic but over the next couple of posts I want to talk about certificates and some of the misunderstandings i have found in the field and through my own experiences.

Some things I want to talk about are:

What is the difference between:             

o Self signed Certificates

o Private Certificates

o Public Certificates

o User certificates

o Computer Certificates

· Where does the public key come from

· Does PKI require proper DNS setup

· What is Subject alternative Names

· How to make windows 2003 CA allow Subject alternative names

· What is a Wild Card Certificate

· What is the difference between TLS and MTLS

· What does the root certificate have to do with this

· Difference between Enterprise Root CA and Standalone CA

· What kind of problems will this cause with monitoring solutions

· What are the ramifications for a company that has auditing requirements (this makes deploying PKI much different then what most are used to)

Unknown's avatar

About Mitch Roberson

Having worked as a consultant at multiple VAR’s as well as Microsoft. Mitch has had the experience of Seeing a multitude of environments. As well as working with both Network, Systems and Security teams. This has allowed him to broaden his knowledge in many areas of IT. Because of this broad experience it has driven him to an almost fanatical desire to have visibility in his environments so he can understand what is happening with in an environment. He still is responsible for day to day operations of Active Directory, Exchange, and much more. But his passion is to learn how applications communicate so he can decrease mean time to resolution.
This entry was posted in Uncategorized. Bookmark the permalink.

Leave a comment