For our internal-facing sites we utilize GoDaddy (cheap certs).Ĭonfiguration, then Certificate Management, followed by Identity CertificatesĬlick the radio button Add a new identity certificateĬlick New… for a new key pair – I generally name it godaddy12 (vendor+year) and make it 2048 bit Production requires an authenticated certificate from a globally trusted CA. The self-signed cert is only good for testing. Unfortunately that means the site must be secured AND have a certificate. So after we had our load balanced ASA5510’s setup, we purchased some licenses for SSLVPN Users. What happens when you enable a Man in the Middle attack? Cain and Abel anyone? I know a lot of IT departments that train their users to just click past the errors. It’s never good practice to have your users get used to seeing “Certificate Invalid” errors on secure sites.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |