Yeah, they actually feel cozy about setting up an internal-only CA and have the means to “push” trust out to their very-many machines. (Not quite sure how that works there … but apparently it means that I won’t have to.) But a truly internal-only CA (company-self-signed cert) does actually have some advantages for a site that needs to be secure and accessible to no one outside the company. Makes sense, I suppose. “So it goes… thanks, folks.”
1 Like