Hi All,
We are now in designing phase of Two Tier Microsoft PKI 2008 R2. Our security team has raised concerned about OCSP/CDP server as it will open for anonymous access and asking whether can we have different CDP/OCSP server for internet and intranet users and for external users planning to put server in DMZ. Can anyone has suggestion/best practice/ technet article for the same.
Thanks..