Extranet
The goal of this project was to
- share internal data to external people
- precisely control the access rights of users because each user has only access to part of the extranet
- authenticate users with X.509 certificates
- integrate with the existing infrastructure
-
integrate of existing documents
The solution deployed is using eZ Publish, an open source content management system, interfacing with the internal LDAP server. The certificates are managed with EJBCA, a certificate authority management software.
Most steps are automated, and certificate distribution happens securely with the minimum of human intervention.