certificate deployment question

I am pretty new to certificate authorities and I am using an exchange 2003
server. For secure public OWA access I am only allowing https. I setup a
stand along CA and created a certificate, I found that for clients to be
able to access they need the root corporate certificate from the CA. So I
simply got that from the CA and then intsalled that on all the laptops so
there won't be a pop-up also when using RPC-over-HTTP I need it to be
seemless.
Basically my question is if this is the best method of using the CA, or what
is the best practise for making the certificate path valid, where I wouldn't
have to install the root certificate for the CA on each laptop to complete
the certificate path?

I hope this made sence, again I am not too familiar with CA, and how to best
implement.

Thank you.

You can use Group policy to add your certificate the the trusted list of CAs.
See
http://www.microsoft.com/technet/pro...6165b97c1.mspx

"mc123" wrote:

> I am pretty new to certificate authorities and I am using an exchange 2003
> server. For secure public OWA access I am only allowing https. I setup a
> stand along CA and created a certificate, I found that for clients to be
> able to access they need the root corporate certificate from the CA. So I
> simply got that from the CA and then intsalled that on all the laptops so
> there won't be a pop-up also when using RPC-over-HTTP I need it to be
> seemless.
> Basically my question is if this is the best method of using the CA, or what
> is the best practise for making the certificate path valid, where I wouldn't
> have to install the root certificate for the CA on each laptop to complete
> the certificate path?
>
> I hope this made sence, again I am not too familiar with CA, and how to best
> implement.
>
> Thank you.