Because you are not just encrypting a key, but this certificate will be used to encrypt data as well.
The public key will be available on your authoring computer, and when you create the MOF the password will be encrypted with the public key. The only device that can decrypt the password is the computer that has the private key which should be just the DSC target node.
What sort of reason for “pushback” are you getting?
Viewing 1 reply thread
The topic ‘Securing the MOF’ is closed to new replies.