具有天蓝色身份验证的专用Web服务器的SSL证书
[英]SSL Cert for private web server with azure authentication
问题描述
I have been trying to figure out if the below scenario is correct. 
我一直在尝试找出以下情况是否正确。
I have a website hosted internally by the company i work for. 我有一个网站由我工作的公司内部托管。 It only needs to be accessed by employees of my work. 它只需要我的工作人员访问。 The server is on a private IP range. 服务器在专用IP范围内。 However my website authenticates using Azure and Microsoft Graph API. 但是,我的网站使用Azure和Microsoft Graph API进行身份验证。 It is configured as a converged app as it uses the new Azure 2 libraries, one of the requirements is that the login page is https. 由于它使用新的Azure 2库,因此被配置为聚合应用程序,要求之一是登录页面为https。 I know i can do a self signed cert and i might do that as a stop gap, however i would prefer to do it properly. 我知道我可以做一个自签名证书,并且我可以这样做,但是我宁愿做得很好。
There is no global DNS in place for the server, and it might not be possible to do so, so netbios name would be preferable, can i get an SSL cert for server1.companyname.domain.com ? 没有适用于该服务器的全局DNS,因此可能无法这样做,因此最好使用netbios名称,我可以为server1.companyname.domain.com获得SSL证书吗? I have looked on GoDaddy etc and i think that i can, but i dont want to spend the money to find my solution does not work. 我看过GoDaddy等,我认为可以,但是我不想花钱找到我的解决方案不起作用。
Also, some users may need to access the site by IP depending on there location, is this even possible with https? 此外,某些用户可能需要根据IP位置访问IP站点,甚至可以通过https访问吗? i am guessing not. 我猜不是。
I know this is some pretty basic stuff but i've never had to configure SSL before, not sure how i've gotten away with it for so long :) 我知道这是一些非常基本的东西,但是我以前从未配置过SSL,不确定我这么久以来如何摆脱它了:)
Thanks 谢谢
1 个解决方案
解决方案1
0 已采纳 2018-07-10 15:47:02
An internal certificate authority seems to be the way to go, whether this is OpenSSL or active directory. 不管是OpenSSL还是活动目录,内部证书颁发机构似乎都是必经之路。 let's encrypt would be ideal but the DNS has to be public. 让我们加密是理想的选择,但DNS必须是公共的。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.