StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POApplication-Specific X509 Certificate on Windows?
primarykey
Id
9246925
data
AcceptedAnswerId
0
AnswerCount
1
ClosedDate
CommentCount
0
CommunityOwnedDate
CreationDate
2012-02-12T06:25:45.057
FavoriteCount
0
LastActivityDate
2012-02-12T07:17:03.463
LastEditDate
LastEditorUserId
0
OwnerUserId
441822
ParentId
0
PostTypeId
1
Score
0
ViewCount
232
LastEditorDisplayName
text
Body
<p>I am attempting to establish an internal CA within my company. One of the primary purposes of doing this is to issue certificates to our customers, which they will use to establish TLS connections between our client and server applications (both Windows OS-based). I am currently working under the following constraints:</p> <ul> <li>A server certificate will be issued to each of our server customers, and should be installed on the customer's server such that our Server Application can use it to establish TLS sessions.</li> <li>A trusted root certificate for our CA will be packaged with our Client Application, and should be installed silently along with the application in such a way that the Client Application can use it to verify the server certificate. (The installer is assumed to have administrative access on the client machine.)</li> <li>The trusted root certificate should be available to any user of the Client Application on the client machine, and should not require a password from the user to access.</li> <li>I hesitate to place the trusted root certificate in the "Trusted Root Certification Authorities" section of the Local Machine certificate store, because it could then be used in a larger scope than simply authenticating our application (to authenticate web pages for IE, for example.) In the event that our root certificate is compromised, I would rather limit the damage to our own application.</li> </ul> <p>Where and how should I be installing the server certificate and the trusted root certificate on the server and client machines (again, both using a Windows OS) such that these constraints are met?</p>
Tags
<windows><ssl><x509><ca>
Title
Application-Specific X509 Certificate on Windows?
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. This table or related slice is empty.
UserOwnerUserId
1. USWill Shipley
plurals
PostLinksPostIdRelatedPostId
1. PL
  singulars
  LinkTypeLinkTypeId
  LTLinked
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
  singulars
  PostTypePostTypeId
  PTAnswer
VotesPostIdCreationDate
1. This table or related slice is empty.
CommentsPostId
1. This table or related slice is empty.

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.