Professional Documents
Culture Documents
Module Overview
What is AD CS?
Module Overview
Overview of Active Directory Certificate Services
These certificates verify the identity and other attributes of the certificate subject to other entities
Internal CAs are less expensive and provide more administrative options, but the issued certificates are not trusted by external clients
X
X X X X X X
Certificate Templates
Online Responder Enterprise PKI Certificates
Public keys are distributed to all clients who request the key
Private keys are stored only on the computer from which the certificate was requested
Plaintext
SSL (Encrypted)
Plaintext
Web Server
Encrypt
Decrypt
Web Client
Private Key
Public Key
In this demonstration, you will see how to use certificates to secure data
Automatic Enrollment
In this demonstration, you will see how to use Web enrollment to obtain certificates
Enterprise CA
Group Policy
Domain Computer Auto-enroll is enabled on the template from which the requested certificate is created
Clients can ensure the certificate has not been revoked by using the following methods:
Online Certificate Status Protocol responder service (OCSP)
Summary of AD CS
2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Office, Azure, System Center, Dynamics and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.