Learn About Windows SharePoint Services 3.0, Configuring1 | 2 |
After deployment, you receive numerous reports from external users about various warning messages, including error pages in Internet browsers on Windows Vista clients and warning message boxes on older clients.
You need to configure your network to communicate with users properly and without those error and warning messages. What should you do?
A. Download and install the latest service pack and all the available critical updates on the WSS and ISA servers.
B. Obtain a Web server certificate from a public trusted CA and install it on the WSS server.
C. Obtain a Web server certificate from a public trusted CA and install it on the ISA server.
D. Use the Web-based tool to request a stronger SSL encryption from your internal CA. Send this certificate to a public trusted certification authority to be signed.
Obtaining a Web server certificate from a public trusted CA and installing it on the ISA server is the correct solution to work around this issue. When you want to enter a secure Web site that does not have a well-known certificate from a public CA, most of the popular Web browsers issue warning messages.
In particular, Internet Explorer version 7 users receive a Web page designed to inform them about the problem with the certificate installed on the destination server. The best solution in such scenarios is to purchase a Web server certificate from a well-known security company, which is substantially more expensive than using internally made Web certificates for SSL encryption.
Downloading and installing the latest service pack and all the available critical updates on both servers is a good security practice but definitely will not resolve this issue for customers.
Obtaining a Web server certificate from a public trusted CA and installing it on the WSS server would be a good solution to this problem if the users access the Web server directly. However, in this scenario, they are accessing your Web server through the ISA firewall.
Using the Web-based tool to request a stronger SSL encryption from your internal CA will not help in this case, and your users will again receive those warning and error messages.
Configuring services for secure mobile access to SharePoint data
Microsoft Office SharePoint Server 2007 Administrator's Companion
Planning Site Creation, Maintenance and Security
Course 5060: Implementing Windows SharePoint Services 3.0