Learn how to use Active Directory Certificate Services (AD CS) to verify identity, encrypt communication, and establish trust across a Windows network.
- [Scott] If two people that have never met before are tasked with working together on a project, collaborating, sharing data, they're going to need to trust each other. For this to happen someone's going to need to introduce them. Somebody that can vouch for their identity and what they're supposed to have access to. In the computer realm we use certificates to provide this kind of introduction. The Certificate Services role, in Windows Server 2019, can be used to vouch for the identity of your computers and your users as they interact with each other. In this course, we're going to take a look at the anatomy of a certificate, and we'll go through the process of setting up a public key infrastructure in your own domain. Additionally, we'll look at multiple ways to enroll in these certificates, as well as finding out how to revoke the certificates when they're no longer appropriate. Hi, I'm Scott Burrell, and I'm looking forward to taking this trip with you. So, let's look at what it takes to get started.
- Identifying trusted certificate authorities
- Breaking down the anatomy of a certificate
- Installing and configuring AD CS
- Backing up and recovering AD CS
- Creating and publishing certificate templates
- Enforcing certificate enrollment with AD Group Policy
- Creating an enrollment agent
- Configuring web-based certificate enrollment
- Revoking certificates