On Tue, Oct 17, 2006 at 05:02:17PM -0400, Hoort, Brian wrote: > I hope that University-wide web services (wifi, e-mail, HR, etc.) take > this opportunity to heart and acquire legitimate certificates. > > If I remember correctly, certificates may be acquired through AIS (my > apologies if I'm wrong on this, Mr. Porter!) The MSUnet Wireless system has a unique problem with certificates, in that the certificate chain can't be validated prior to login. We are currently using self-signed certs, because the certs from AIS don't help, being chained certs. We are attempting to improve the situation, but using Verisign certs is a big $$$ expense. We think we have a line on cheaper certs that are directly signed by a cert listed in IE 7. If that works out, we can clean up the cert issue for the wireless network. Doug -- Doug Nelson, Network Manager | [log in to unmask] Academic Computing and Network Services | Ph: (517) 353-2980 Michigan State University | http://www.msu.edu/~nelson/