Thanks for the info.
Configuring a PKI solution is a huge
undertaking. It does solve the encryption issue within your Forest but it
is highly recommended that offload NICs be used wherever appropriate to handle
the added traffic.
Firm.
From: MSU Network
Administrators Group [mailto:
Sent: Monday, January 29, 2007
11:44 AM
To:
Subject: Re: [MSUNAG] End-to-End
Encryption
Using MS Certificate Server you can set up a full blown PKI,
complete with client auto-enrollment for user certificates, EFS
(encrypted file system), and PGP-like security for exchange users.
Having MS's Public Key Infrastructure actually makes EFS useful
as the key isn't stored on the machine that you are encrypting.
It all seems like a nice solution. Although, I have only read
about it and dreamt of having the time to set it up.
It certainly doesn't look like a small undertaking. :)
If you decide to go for this or some other solution please share
experience.
Bryan Murphy | CISSP, MCP |
IT Coordinator | MSU Plant Research Lab & Plant Biology
On Jan 28, 2007, at 1:31 PM,
Back to reality!
Is there anyone out
there using an enterprise encryption solution and if so would you mind sharing
about your setup?
Thanks.
Information Systems Manager
Educational and Support Services
162 Student Services Building
(517) 432-7541
Bryan Murphy | CISSP,
MCP |
IT Coordinator | MSU
Plant Research Lab & Plant Biology