Hi, it's been a few some years since I worked with OpenSSL and certifcates and I have never worked with Microsoft CA...
My idea was to use Microsoft CA as a root authority for my OpenSSL certs that I have to create for 5.1... can someone tell me if this is a good direction to start or am I over complicating it? And is there a step by step that would walk me thru the MS CA stuff?
So far, I have setup my Microsoft CA role, exported a x64 based root CA, I think, and put it on my Vcserver in the c:\certs dir, created the hash etc, seems sort of ok.. I am starting to create the config files for each component... but it just seems like i could be going massively wrong and before I go further I would like some input if this infrastructure will work? Or should I be using OpenSSL to creae the root CA? and is that simpler and is there a good step by step so I don't get lost? I am using the vsp_51_vcserver_esxi_certificates.pdf but I guess I am pretty cr*p at understanding this document maybe and because I am using Microsoft CA finding it hard to follow... sorry for the helplessness of this post, it is only for my lab, but this is in preperation to upgrade two datacenters later in January to 5.1 and I need to be fully conversant in this procedure by then. And if my head is bloody from banging it against the wall, it won't help :-(
thanks to any kind soul that can help out here!
Bill