From the course: Windows Server 2019: Active Directory Certificate Services

Unlock the full course today

Join today to access over 22,600 courses taught by industry experts or purchase this course individually.

Using online responders

Using online responders - Windows Server Tutorial

From the course: Windows Server 2019: Active Directory Certificate Services

Start my 1-month free trial

Using online responders

- [Instructor] There is another way to check the Krill to see which certificates may have been revoked. Let's walk through a scenario where we might need that. Let's say my laptop is presenting a certificate through some random web server, maybe a web gateway or some other application on the Internet. For that web server to check the validity of my certificate, it's going to need to pull the Krill, which, as it stands, only exist on my certificate authority. That means this random web server has to reach inside my domain to the certificate authority itself to determine whether or not the certificate is valid. I may not want random servers on the Internet being able to penetrate my network just to pull that kind of information. The other option is to bring up a web server as an online responder. Online responder is a role service of Active Directory Certificate Services. It can pull the Krill from our certificate authority and make it available to random web servers. To set this up…

Contents