Configuring Windows 2000 to Use CA Signed Certificates
The following section describes in general terms how you would set up a Windows 2000 system to interoperate with a Screen. This section only provides general steps. For specific instructions on setting up the Windows 2000 system see the Windows 2000 online help and also refer to these White Papers which are available on the Microsoft web site.
-
How to Configure IPSec Tunneling in Windows 2000
-
How to Install a Certificate for Use with IP Security
-
Step-by-Step Guide to Internet Protocol Security IPSec
Set Up the Windows 2000 System
-
Obtain a private key and certificate signed by the same CA used by the Screen with whom you wish to communicate.
-
Make sure that the CA Root certificate is in the Trusted Root CA Certificate store.
-
Create an IPSec security policy.
Create an IKE rule that allows communication between the Screen and the Windows 2000 system.
-
Be aware of the following interoperability requirements:
-
The Authentication Method should be Certificate Authority and the Root CA list must contain the common Root CA certificate.
-
The filter action should be Negotiate Security and it should only specify one security method.
-
- © 2010, Oracle Corporation and/or its affiliates