There are new huge news for DeployManager tool that I initially released last year (http://www.iamraf.net/Tools/DeployManager-first-release-certificates-management).
Here is a list of the new additions.
There is a new toolbar that enable filtering capabilities in both the tree and the listview.
As you type the filter text in the toolbar, the tree and list views are automatically updated. The tree's leaf that contain certificate matching the filter become red. The listview is updated and show only the filtered certificates.
The listview display new detailed informations:
Often there is the need to change the ACLs for the certificate key container. Assigning the ACLs was already possible with the previous release.
In this new version, you can manage local machine users and groups:
I explicitly did not implement the "remove group" feature as removing a group can be dangerous.
This dialog is very useful when you want to use an IIS "managed account".
Typically you may want to:
Managed accounts are not Windows accounts, so you will not see them in the "Computer Manager" management console nor the SQL Management application.
The "New Certificate" tab have been improved to support the SAN extension. SAN extension let you provide additional Name (alias) for the certificate.
The X500 Name for the certificate could already specify wildcard names (CN=*.mydomain.com).
With SAN extension it is possible to specify multiple domains in addition to the primary X500 name. For example www.mydomain.net and www.mydomain.org. SAN extension support different kind of names. This tool support:
Certificates friendly names are a store-specific property that can provided while importing the certificate.
The "New Certificate" tab was changed in order to support the friendly name while adding the new certificate into the store(s). The "Save the certificate on disk" is not affected.
Many tool features do not require being an administrator. Obviously there are others, like installing a certificate, changing ACLs, etc., that do require administrative privileges. As security tokens can be assigned only during the initial process creation, elevating an application is not an easy task. Task manager, for example, do close and reopen itself.
I've choosen a different solution, and for each solution the application title change accordingly:
Furthermore the elevation process is faster as I totally reviewed the interoperability with the native operating system API.
Copyright (c) Raffaele Rialdi 2009, Senior Software Developer, Consultant, p.iva IT01741850992, hosted by Vevy Europe Advanced Technologies Division. Site created by Raffaele Rialdi, 2009 - 2011