Does a CA has any role in CAS architecture?
Michael Ströder
michael at stroeder.com
Tue Nov 18 05:27:23 EST 2008
Mehdi Sarmadi wrote:
> I'm wondering if a Certificate Authority Server has a role in CAS or
> other SSO solutions architecture?
Normally a CA signs the server certs needed for deploying HTTP over SSL.
> Is it essential or best practice to have Certificate Authority Service
> inside the architecture or better and enough just to have SSO and SSL
> certificates signed by public providers like Verisign?
Your SSL server certs can be signed by any CA. But the root CA's cert
has to be installed as trust anchor in each CAS-ified application (CAS
client) and the web browsers of the end users.
Ciao, Michael.
More information about the cas
mailing list