[unisog] S/MIME Key Management

Russell Fulton r.fulton at auckland.ac.nz
Fri Nov 4 23:04:28 GMT 2005

Mike Wiseman wrote:
  I'd be interested to
> hear if others are doing a combination of reselling commercial CA 
> products and running a self-signed CA. The reselling service would serve 
> those needing SSL server certs and S/MIME certs for external facing 
> email. The internal CA would be used for user authentication and 
> encryption apps.

This is exactly what we have been doing for nearly 5 years.  Up until 
now we have just used self-signed cert internally but are now looking at 
setting up  a small CA operation to sign certs for internal use and 
encourage everyone on campus to load our master Cert into their browsers.


More information about the unisog mailing list