Download Safari Books Online apps: Apple iOS | Android

Entire Site

Safari Books Online

    Free Trial

    Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.


    • Create BookmarkCreate Bookmark
    • Create Note or TagCreate Note or Tag
    • DownloadDownload
    • PrintPrint
    Share this Page URL
    Help

    Chapter 16. Creating Trust Between Organ... > Verifying Cross Certification Constr...

    16.3. Verifying Cross Certification Constraints

    Once you publish the necessary Cross Certification Authority certificates to AD DS, you should verify their publication. The recommended verification method is the certutil command described here:

    1. Open a command prompt.

    2. At the command prompt, type certutil -viewstore "CN=CAName, CN=AIA,CN=Public Key Services, CN=Services, CN=Configuration,ForestRootDN?crossCertificatePair (where CAName is the name of the CA to which the Cross Certification Authority certificate is issued, and ForestRootDN is the LDAP distinguished name of the forest that issued the Cross Certification Authority certificate).

    3. In the View Certificate Store dialog box, select the Cross Certification Authority certificate you want to view, and then click View Certificate.

    4. In the Certificate dialog box, on the Certification Path tab, ensure that the certification path shows that the CAName certificate chains to your organization’s root CA certificate.


      

    You are currently reading a PREVIEW of this book.

                                                                                            

    Get instant access to over
    $1 million worth of books and videos.

      

    Start a Free Trial