Re: HMC - https -- MIDRANGE-L

Subject: Re: HMC - https
From: Patrik Schindler <poc@xxxxxxxxxx>
Date: Mon, 6 Mar 2023 23:55:30 +0100
List-archive: <https://archive.midrange.com/midrange-l/>
List-post: <mailto:midrange-l@lists.midrange.com>
List-subscribe: <https://lists.midrange.com/mailman/listinfo/midrange-l>, <mailto:midrange-l-request@lists.midrange.com?subject=subscribe>
List-unsubscribe: <https://lists.midrange.com/mailman/options/midrange-l>, <mailto:midrange-l-request@lists.midrange.com?subject=unsubscribe>

Hello Rob,

Am 06.03.2023 um 20:35 schrieb Rob Berendt <robertowenberendt@xxxxxxxxx>:

One may argue that a self signed certificate should be fine for internal use.

Usually, larger organizations run a Microsoft Active Directory based PKI. It's comparably easy to have a certificate request signed via its web interface.

As Larry rightfully points out, it's still manual labor. I simply can't understand why vendors of "every piece of gear", like appliances, switches, printers, etc. do not implement at least SCEP or EST. Apparently those vendors either don't take security seriously ("You can always use our self-signed certificate. Just ignore/override the browser's warning.") or have no idea about the annoyingness of repeated manual labor. Aren't computers perfect for automating repetitive tasks?

:wq! PoC

As an Amazon Associate we earn from qualifying purchases.

This mailing list archive is Copyright 1997-2025 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.