My personal opinion:  the built-in CA, GPOs configured for automatic certificate enrollment, and IPSec.

And why stop at DC-to-DC traffic, use it for all domain-joined computers.  That’s what Microsoft does.

-Michael

Has any one on the list done this?

What is the best way to go: Use built in CA on Server2003 "OR"  Use Ipsec "OR" Use third party CA?

Thanks,
Anand

************************************************************** This communication may contain privileged and/or confidential information. It is intended solely for the use of the addressee. If you are not the intended recipient, you are strictly prohibited from disclosing, copying, distributing or using any of this information. If you received this communication in error, please contact the sender immediately and destroy the material in its entirety, whether electronic or hard copy. This communication may contain nonpublic personal information about consumers subject to the restrictions of the Gramm-Leach-Bliley Act. You may not directly or indirectly reuse or redisclose such information for any purpose other than to provide the services for which you are receiving the information. There are risks associated with the use of electronic transmission. The sender of this information does not control the method of transmittal or service providers and assumes no duty or obligation for the security, receipt, or third party interception of this transmission. Thank you. **************************************************************

==============
Missed an email? Check out the list archive:
http://myitforum.com/cs2/blogs/smslist/

==============
Missed an email? Check out the list archive:
http://myitforum.com/cs2/blogs/smslist/