Security Concerns of importing SharePoint Root Authority to Trusted Root Certification Authorities store

We are experiencing slowness because of SharePoint's STS certificate CRL checking. This is a known issue and there is a Microsoft Workaround for it:

The problem stems due to the fact that the SharePoint server we have cannot connect to the Internet. Hence, Microsoft has a workaround asking us to import the SharePoint Root Authority to our Trusted Root Certification Authorities store. My concern with this approach is, if this machine is offline and we are importing a new Root Authority, how can we know if the root authority is still valid. How do we validate for revoked certificates?

I am no expert on certificates and root authorities. Hence, I am being a little extra paranoid about this solution. Are there any security drawbacks to this approach?

Thank you


Category: certificates Time: 2016-07-28 Views: 0

Related post

iOS development

Android development

Python development

JAVA development

Development language

PHP development

Ruby development


Front-end development


development tools

Open Platform

Javascript development

.NET development

cloud computing


Copyright (C), All Rights Reserved.

processed in 0.210 (s). 12 q(s)