Presentation is loading. Please wait.

Presentation is loading. Please wait.

Module 13: Enterprise PKI Active Directory Certificate Services (AD CS)

Published byShanon Lester Modified over 8 years ago

Similar presentations

Presentation on theme: "Module 13: Enterprise PKI Active Directory Certificate Services (AD CS)"— Presentation transcript:

1 Module 13: Enterprise PKI Active Directory Certificate Services (AD CS)

2 Lesson 1: Certificate Authority List improvements to Certificate Services Monitor Active Directory Certificate Services using PKIView Describe new Group Policy settings for Certificate Services Describe the Microsoft Simple Certificate Enrollment Protocol Describe the Online Certificate Status Protocol Use Certificate Web Enrollment

3 Manageability: Improved administrative user experience Network Device Enrollment Service Enabling delegated enrollment agent functionality Certificate Authority

4 Enterprise PKI Enhanced credential life cycle management Enabling revocation across all applications Enhanced manageability and deployment of Certificate Services New certificate enrollment API and UI

5 Certificate Policy Settings Central Certificate Setting Management Computer Configuration\Windows Settings\Security Settings\Public Key Policies Control Whether Users Make Peer Trust Decisions Certificate Deployment

6 Microsoft Simple Certificate Enrollment Protocol Generates One-Time Enrollment Passwords Processes SCEP Enrollment Requests Retrieves Pending Requests from certificate authority (CA)

7 Online Certificate Status Protocol Responder Features: – Support for multiple CAs – Supports caching – Supports NONCE and No-NONCE requests New Revocation Services: – New OCSP client in Windows Vista™ – New OCSP Responder in Windows Server® 2008 – Integrate OCSP stapling into Kerberos and SSL protocols

8 Certificate Web Enrollment Provides Certificates for Non-Domain Users Based on CertEnroll.dll Creates “CertSrv” Web Site.

Download ppt "Module 13: Enterprise PKI Active Directory Certificate Services (AD CS)"

Similar presentations

What’s New in Windows Server 2008 AD?

What’s New in Windows Server 2008 AD?
Web Services Security Requirements Stephen T. Whitlock Security Architect Boeing.

Web Services Security Requirements Stephen T. Whitlock Security Architect Boeing.
Introduction to z/OS Security Lesson 4: There’s more to it than RACF

Introduction to z/OS Security Lesson 4: There’s more to it than RACF
MyProxy: A Multi-Purpose Grid Authentication Service

MyProxy: A Multi-Purpose Grid Authentication Service
Deploying and Managing Active Directory Certificate Services

Deploying and Managing Active Directory Certificate Services
Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.

Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.
Chapter 9 Deploying IIS and Active Directory Certificate Services

Chapter 9 Deploying IIS and Active Directory Certificate Services
PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.

PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
National Center for Supercomputing Applications Integrating MyProxy with Site Authentication Jim Basney Senior Research Scientist National Center for Supercomputing.

National Center for Supercomputing Applications Integrating MyProxy with Site Authentication Jim Basney Senior Research Scientist National Center for Supercomputing.
Kerberos and PKI Cooperation Daniel Kouřil, Luděk Matyska, Michal Procházka Masaryk University AFS & Kerberos Best Practices Workshop 2006.

Kerberos and PKI Cooperation Daniel Kouřil, Luděk Matyska, Michal Procházka Masaryk University AFS & Kerberos Best Practices Workshop 2006.
Windows Vista And Longhorn Server PKI Enhancements Avi Ben-Menahem Lead Program Manager Windows Security Microsoft Corporation.

Windows Vista And Longhorn Server PKI Enhancements Avi Ben-Menahem Lead Program Manager Windows Security Microsoft Corporation.
16.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

16.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
Understanding Active Directory

Understanding Active Directory
Chapter 11: Active Directory Certificate Services

Chapter 11: Active Directory Certificate Services
Security and Policy Enforcement Mark Gibson Dave Northey

Security and Policy Enforcement Mark Gibson Dave Northey
CN1276 Server Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+

CN1276 Server Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.

4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
CN2140 Server II Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+

CN2140 Server II Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+
Christopher Chapman | MCT Content PM, Microsoft Learning, PDG Planning, Microsoft.

Christopher Chapman | MCT Content PM, Microsoft Learning, PDG Planning, Microsoft.

Similar presentations

Ads by Google