Hello
i would like to test SSL EV for internal purpose.
I follwed this guide http://blogs.technet.com/b/askds/archive/2009/08/14/extended-validation-support-for-websites-using-internal-certificates.aspx
but this is not for enterprise pki, however one solution would be to change CAPolicy like explained http://social.technet.microsoft.com/Forums/windowsserver/en-US/8bfc3f80-55c8-4e93-88b9-23a59bb58d2b/all-issuance-policies-for-an-intermediate-ca?forum=winserversecurity
I have a two tier pki with offline root and one online enterpirse intermediat ca. But i dont understand if i need to change the Policy from top or if i just need to change the capolicy for intermediate where i issue my ssl cert.