Presentation is loading. Please wait.

Presentation is loading. Please wait.

PKI Enhancement in Windows Vista® and Windows Server 2008.

Published byCharleen Logan Modified over 9 years ago

Similar presentations

Presentation on theme: "PKI Enhancement in Windows Vista® and Windows Server 2008."— Presentation transcript:

1 PKI Enhancement in Windows Vista® and Windows Server 2008

2 Client-side PKI enhancements Server-side PKI enhancements What Will We Cover?

3 Level 200 Experience managing a Windows Server PKI environment Experience managing an enterprise-level Windows Server environment Helpful Experience

4 Reviewing Enhancements Introducing Credential Management Services Introducing Revocation Agenda

5 Microsoft and PKI Enhanced credential life cycle management

6 Microsoft and PKI Enhanced credential life cycle management New certificate enrollment API and UI

7 Microsoft and PKI Enhanced credential life cycle management Enhanced manageability and deployment of Certificate Services New certificate enrollment API and UI

8 Microsoft and PKI Enhanced credential life cycle management Enabling revocation across all applications Enhanced manageability and deployment of Certificate Services New certificate enrollment API and UI

9 Demonstration Environment

10 Demo Introducing Public Key Infrastructure in Windows Server 2008 Add Certificate Server Role demonstration

11 Reviewing Enhancements Introducing Credential Management Services Introducing Revocation Agenda

12 Credential Management

13 Certificate Services Client (CSC) Auto Enrollment

14 Credential Management Certificate Services Client (CSC) Auto EnrollmentCredential Roaming

15 Credential Management Certificate Services Client (CSC) Active Directory Certificate Server Role Auto EnrollmentCredential Roaming Delegated Enrollment Agent

16 Credential Management Certificate Services Client (CSC) Active Directory Certificate Server Role Auto EnrollmentCredential Roaming Delegated Enrollment Agent Integrated Network Device Enrollment

17 Auto Enrollment Attack surface reduction –WMI jobs-based design

18 Auto Enrollment Attack surface reduction –WMI jobs-based design Improved usability for offline scenarios –Expiration notifications

19 Workstation Active Directory Server Credential Roaming

20 Workstation Active Directory Server Credential Roaming

21 Workstation Active Directory Server Credential Roaming

22 Demo Exploring Enrollment and Credential Roaming Explore new enrollment UI demonstration

23 Manageability: Improved administrative user experience Network Device Enrollment Service Enabling delegated enrollment agent functionality Certificate Services

24 Manageability: Improved administrative user experience Certificate Services Network Device Enrollment Service Enabling delegated enrollment agent functionality

25 Certificate Services Manageability: Improved administrative user experience Network Device Enrollment Service Enabling delegated enrollment agent functionality

26 Demo Introducing Certificate Services Manageability Introduce CA performance monitors Explore delegated enrollment demonstration

27 Reviewing Enhancements Introducing Credential Management Services Introducing Revocation Agenda

28 Revocation New Revocation Services: –New OCSP client in Windows Vista –New OCSP Responder in Windows Server 2008 –Integrate OCSP stapling into Kerberos and SSL protocols

29 Revocation Responder Features: –Support for multiple CAs –Supports caching –Supports NONCE and No-NONCE requests New Revocation Services: –New OCSP client in Windows Vista –New OCSP Responder in Windows Server 2008 –Integrate OCSP stapling into Kerberos and SSL protocols

30 Demo Configuring OCSP and Using Revocation Deploy the online responder Configure the online responder Show revocation example demonstration

31 The Core IO Model CROSS-MODEL ENABLERS IdentityIdentity Presence Presence Rights ManagementRights Management Network AccessNetwork Access Desktop, Device, and Server Management Security and Networking Identity and Access Management Data Protection and Recovery IT Management and Security Process

32 Windows Server 2008 + Windows Vista More Efficient Management Single worldwide servicing model Event forwarding between client and server Faster and more reliable remote operating system deployments Network Access Protection ensures health of connecting systems

33 Windows Server 2008 + Windows Vista Greater Availability Scalable print servers with client-side rendering Smooth offline experience with client-side caching Transactional File System for file and registry operations Policy-based Quality of Service to prioritize application bandwidth  More Efficient Management Single worldwide servicing model Event forwarding between client and server Faster and more reliable remote operating system deployments Network Access Protection ensures health of connecting systems

34 Faster Communications Fast enterprise class search on clients and servers Faster networking with new TCP/IP stack and native IPv6 Improved file-sharing performance over high-latency links Integrated remote access to internal applications and resources Windows Server 2008 + Windows Vista Greater Availability Scalable print servers with client-side rendering Smooth offline experience with client-side caching Transactional File System for file and registry operations Policy-based Quality of Service to prioritize application bandwidth  More Efficient Management Single worldwide servicing model Event forwarding between client and server Faster and more reliable remote operating system deployments Network Access Protection ensures health of connecting systems

35 Increases in manageability throughout all aspects of Windows PKI Decreased attack surface for enrollment and Windows security throughout Redesigned revocation services Session Summary

36 www.microsoft.com/technet/add-204 Visit TechNet at: www.microsoft.com/technet Visit the following site for additional information: For More Information

37 Find these resources and more at http://www.microsoft.com/learning/windowsserver2008 Resources for IT Pro learning & professional development http://www.microsoft.com/learning/WindowsServer2008 E-Learning  Introducing Windows Server 2008 (Collection 5934) – *Free e-learning!  Upgrade Windows Server 2003 MCSE Technical Skills to Windows Server 2008 – Discounted! Books  Introducing Windows Server 2008 by Mitch Tulloch with the Microsoft Windows Server Team – *Free eBook offer  Microsoft Windows PowerShell Step by Step by Ed Wilson – *Free eBook offer Classroom Training & HOLs  First-look courses and hands-on labs (HOLs) WS 2008 Certification  90-minute clinics & HOLs on specific WS 2008 scenarios  Skills transitioning courses Helping MCSAs and MCSEs transition skills from WS 2003 to WS 2008. Certification Transition your skills to the next generation of Windows Server  Transition Paths  MCSAs or MCSEs to MCTS or MCITP  Recorded Live Meeting  Windows Server 2008 Certification Paths  Save 40%  Windows Server 2008 Upgrade Exams Microsoft Learning - Windows Server 2008 Learning Portal Microsoft Learning Resources—Learn What’s New, Transition your skills, and build deep product expertise.

38 Become a Microsoft Certified Professional What are MCP certifications? Validation in performing critical IT functions Why certify? WW recognition of skills gained through experience More effective deployments with reduced costs What certifications are there for IT Pros? MCP, MCSE, MCSA, MCDST, MCST, MCITP www.microsoft.com/learning/mcp

39 TechNet Plus TechNet Plus is an essential premium web-enabled and live support resource that provides IT Professionals with fast and easy access to Microsoft experts, software and technical information, enhancing IT productivity, control and planning. Evaluate & Learn Plan & Deploy Support & Maintain Use the TechNet Library to plan for deployment using the Knowledge Base, resource kits, and technical training Use exclusive tools like System Center Capacity Planner to accurately plan for and deploy Exchange Server and System Center Operations Manager Use the TechNet Library to plan for deployment using the Knowledge Base, resource kits, and technical training Use exclusive tools like System Center Capacity Planner to accurately plan for and deploy Exchange Server and System Center Operations Manager 2 complimentary Professional Support incidents for use 24/7 (20% discount on additional incidents) Access over 100 managed newsgroups and get next business day response-- guaranteed Use the TechNet Library to maintain your IT environment with security updates, service packs and utilities 2 complimentary Professional Support incidents for use 24/7 (20% discount on additional incidents) Access over 100 managed newsgroups and get next business day response-- guaranteed Use the TechNet Library to maintain your IT environment with security updates, service packs and utilities Get all these resources and more with a TechNet Plus subscription. For more information visit: technet.microsoft.com/subscriptions Evaluate full versions of all Microsoft commercial software for evaluation— without time limits. This includes all client, server and Office applications. Try out all the latest betas before public release Keep your skills current with quarterly training resources including select Microsoft E-Learning courses Evaluate full versions of all Microsoft commercial software for evaluation— without time limits. This includes all client, server and Office applications. Try out all the latest betas before public release Keep your skills current with quarterly training resources including select Microsoft E-Learning courses

40 Live Events and Online webcast series Microsoft Professional Blogs Directory Chats, Newsgroups, Forums, and Virtual Labs Local Locator for Professional User Groups Where Else Can I Get Help? www.microsoft.com/technet/community

Download ppt "PKI Enhancement in Windows Vista® and Windows Server 2008."

Similar presentations

What is Infrastructure Optimisation and Why should you care?

What is Infrastructure Optimisation and Why should you care?
Rick Claus IT Pro Advisor Microsoft Canada Rodney Buike IT Pro Advisor Microsoft Canada

Rick Claus IT Pro Advisor Microsoft Canada Rodney Buike IT Pro Advisor Microsoft Canada
Active Directory Fundamentals

Active Directory Fundamentals
Advanced SQL Server 2005 Reporting Services. New Data Sources in SSRS 2005 Reporting Services Data Extensions Working with SSAS and SSIS Data End-User.

Advanced SQL Server 2005 Reporting Services. New Data Sources in SSRS 2005 Reporting Services Data Extensions Working with SSAS and SSIS Data End-User.
Welcome ITPROEXC-113. Pablo Vernocchi MVP Exchange Server Leandro Amore MVP Directory Services Disaster.

Welcome ITPROEXC-113. Pablo Vernocchi MVP Exchange Server Leandro Amore MVP Directory Services Disaster.
Chapter 9 Deploying IIS and Active Directory Certificate Services

Chapter 9 Deploying IIS and Active Directory Certificate Services
Windows Vista And Longhorn Server PKI Enhancements Avi Ben-Menahem Lead Program Manager Windows Security Microsoft Corporation.

Windows Vista And Longhorn Server PKI Enhancements Avi Ben-Menahem Lead Program Manager Windows Security Microsoft Corporation.
Microsoft Software Assurance for Academic Licensing Programs.

Microsoft Software Assurance for Academic Licensing Programs.
Dan Stolts IT Pro Evangelist US DPE - North East Microsoft Corporation

Dan Stolts IT Pro Evangelist US DPE - North East Microsoft Corporation
CN1276 Server Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+

CN1276 Server Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+
Windows Server 2008 Network Access Protection (NAP) Technical Overview.

Windows Server 2008 Network Access Protection (NAP) Technical Overview.
Windows Network Policy Server Fundamentals Ranjana Jain MCSE, MCT, RHCE, CISSP, CIW Security Analyst IT Pro Evangelist Microsoft India

Windows Network Policy Server Fundamentals Ranjana Jain MCSE, MCT, RHCE, CISSP, CIW Security Analyst IT Pro Evangelist Microsoft India
Making Identity and Access Management Real – The Early Days Brian Lauge Pedersen Senior Technology Specialist.

Making Identity and Access Management Real – The Early Days Brian Lauge Pedersen Senior Technology Specialist.
Excel Services Overview. Broad sharing of spreadsheets Business intelligence capabilities Excel services architecture What Will We Cover?

Excel Services Overview. Broad sharing of spreadsheets Business intelligence capabilities Excel services architecture What Will We Cover?
Empowering Small Businesses: Microsoft Office 365 P-Suite Danny Burlage MVP Office 365 Wortell.

Empowering Small Businesses: Microsoft Office 365 P-Suite Danny Burlage MVP Office 365 Wortell.
Welcome Course 20410B Module 0: Introduction Audience

Welcome Course 20410B Module 0: Introduction Audience
1 Read Me First These slides and notes are being made available to MCPs to explain your options in Microsoft Certification. Please note that this PowerPoint.

1 Read Me First These slides and notes are being made available to MCPs to explain your options in Microsoft Certification. Please note that this PowerPoint.
Unit Eight IT CAREER CERTIFICATION 1.Passage One. Microsoft Certifications.

Unit Eight IT CAREER CERTIFICATION 1.Passage One. Microsoft Certifications.
Full Packaged Product (FPP) OEM – PC Preinstall Volume Licensing.

Full Packaged Product (FPP) OEM – PC Preinstall Volume Licensing.
An MSDN Subscription acts as a lifeline for software developers, testers, architects, IT professionals, database engineers, and others. It provides priority.

An MSDN Subscription acts as a lifeline for software developers, testers, architects, IT professionals, database engineers, and others. It provides priority.

Similar presentations

Ads by Google