This discussion is locked
NorCalTechSupport

Q: What is an acceptable SSL Cert vendor?

I want to make the error messages in FireFox go away when someone signs in for webmail.

Will GoDaddy certs work or should I go for Thawte or Comodo?

What I want is SSL on a mail server that has webmail enabled so it will be Web/Mail cert.

I do not plan on any e-commerce sites on this CPU (at this time anyway)

Thanks for any info & guidance.

early 2008 2.8GHz Mac Pro dual Quad core, Mac OS X (10.5.2), 8GB RAM, 20 inch cinema display

Posted on Jul 13, 2009 9:45 AM

Close

Q: What is an acceptable SSL Cert vendor?

  • All replies
  • Helpful answers

  • by Joe Lucia,

    Joe Lucia Joe Lucia Jul 13, 2009 9:49 AM in response to NorCalTechSupport
    Level 1 (130 points)
    Jul 13, 2009 9:49 AM in response to NorCalTechSupport
    I use GoDaddy certs for all of my servers. The cost is low and it does the job for me just fine.

    JL
  • by GoDaddyGuy,

    GoDaddyGuy GoDaddyGuy Jul 13, 2009 1:44 PM in response to NorCalTechSupport
    Level 1 (75 points)
    Jul 13, 2009 1:44 PM in response to NorCalTechSupport
    NorCalTechSupport,

    An SSL cert from Go Daddy will work in the situation you describe. You can also call our 24/7 support group if you have any other questions concerning our certs. http://tr.im/gdsupport
  • by MrHoffman,

    MrHoffman MrHoffman Jul 13, 2009 3:17 PM in response to NorCalTechSupport
    Level 6 (15,627 points)
    Mac OS X
    Jul 13, 2009 3:17 PM in response to NorCalTechSupport
    Do you have some degree of control over the client boxes, or the cooperation of the users that are accessing your web mail? If so, and if you're willing to learn a little about the Certificate Assistant and some related pieces, you don't need to purchase a commercial certificate.

    If you have "cooperating" clients, you can create your own root CA, register the root CA in the clients, and issue all the certs you need yourself.

    The central value you get with a commercial certificate purchase is a root CA for that vendor that's already embedded in most browsers; a degree of trust exists in the browser. And if you can generate and register your own root CA cert and if you trust yourself...

    Mac OS X Server has all the tools needed, too; start with Certificate Assistant.

    I or somebody else can post up details here, if you do have cooperative clients.
  • by NorCalTechSupport,

    NorCalTechSupport NorCalTechSupport Jul 15, 2009 9:46 PM in response to NorCalTechSupport
    Level 1 (0 points)
    Jul 15, 2009 9:46 PM in response to NorCalTechSupport
    Thanks to both answer givers.

    This was about what I was thinking but wanted to bounce it off of day to day Admins.

    Thanks again group