Implementing Active Directory Certificate Service

What Are CAs?

CA is a well-designed and high Users and computers using certificates, holding CRL’s, OCSP and optional response Request. You can install the CA AD CS role deployment environment Windows Server 2012 is installed beforehand CA, has developed a network of PKI and its Given the structure highest point.

You can have one or more certificates Authorities in a network , but only one may CA At the highest point of the CA hierarchy ( ie , CA is called the root CA , it will be Discussed later in this module ) .

The main objective of the CA to issue certificates, revoke certificates, and publish and AIA CRL information. In doing so, ensure that the CA certificate to users, services and computer issued It can be verified.

CA to perform various functions or roles in PKI. Separation between the roles of a PKI, CA’s Multiple servers are common. A CA provides a number of management tasks, including:

• verify the identity of the certificate requester.

• issue a certificate, requesting the users, computers and services.

• Manage certificate revocation.

When you first deploy network CA (Root CA), which will issue their own certificates. After this, Other CA certificate from the CA You can also choose to receive your certificate issued by CA Use one of the public CA.