Hello Luca,
Thanks for posting in the group.
According to the description, now you are developing an ActiveX control for
use on a web application in Intranet. You want to know
1) Is it possible to create a certifate by yourself so that you don't need
to pay commericial CAs for it?
2) If yes, how to do that?
Based on my experience, before you purchase a certificate for your
control's .cab file from a vendor, you can use the test certificate
provided by Microsoft for verification purposes. The following KB article
has detailed steps on it:
"Packaging ActiveX Controls"
http://msdn.microsoft.com/workshop/components/activex/packaging.asp?frame=tr
ue#Cabinet_Files
However, when the ActiveX control passes test and is ready to be used, I
suggest you sign it with some commerical CAs such as
http://www.verisign.com/. So this control can be trusted worldwide.
I understand your concern is that this control may only be used in your
company only. If so, you can try install a certificate service in one
server of the domain. Then issue root certificate to every client machine.
After that, if you sign the control by the certificates issued by your
local certificate service, they can be trusted by client machines. For more
information on it, please refer to:
"The Microsoft Internet Security Framework: Technology for Secure
Communication, Access Control, and Commerce"
http://msdn.microsoft.com/library/en-us/dnsecure/html/msdn_misf.asp?frame=tr
ue
"HOWTO: Set Up Test Certificates for SSL/TLS Application Development"
http://support.microsoft.com/?id=288897
"ActiveX Error Messages Using Certificate Enrollment Web Pages to Enroll a
Smart Card in Internet Explorer"
http://support.microsoft.com/default.aspx?scid=kb;EN-US;330211
"HOW TO: How to Install/Uninstall a Public Key Certificate Authority for
Windows 2000"
http://support.microsoft.com/?id=231881
Does that answer your question?
Best regards,
Yanhong Huang
Microsoft Community Support
Get Secure! ¨C
www.microsoft.com/security
This posting is provided "AS IS" with no warranties, and confers no rights.