wild card certificate

wild card certificate (Full Version)

All Forums >> [ISA 2006 Publishing] >> Web Publishing

Message

newson -> wild card certificate (18.Jun.2008 4:53:17 AM)
Hi, Currently we are using individual certificates for each application configured on ISA reverse proxy. This process is complicated and required us to allocate one public IP and couple of natted IPs for each application. Because we are using only one domain name ".xyz.com" for all applications, is it feasible to deploy wild card certificate for all applications?. We are also planning to use ISA SSO solution, can this solution help us to achieve this? Also please let us know the security implications of this solution. Thanks in advance for the answer

frobnitzz -> RE: wild card certificate (18.Jun.2008 8:23:30 AM)
wild card, yes - although for the cost you'd probably be better specifying domains on a SAN list. re the ISA SSO, think you might need to expand on that a little. Do you mean use ISA forms to log a user in to a site? Security Implications is probably too large a subject to attempt an answer I think - Just think attack surface, you are inviting people to connect to your ISA server, make sure it's configured as well as possible I guess!

Page: [1]