IT tutorials
 
Applications Server
 

Active Directory 2008 : Configuring Active Directory Certificate Services (part 2) - Enrolling User and Computer Certificates

1/7/2014 8:27:53 PM
- Free product key for windows 10
- Free Product Key for Microsoft office 365
- Malwarebytes Premium 3.7.1 Serial Keys (LifeTime) 2019

2. Enrolling User and Computer Certificates

Now that we have installed the AD CS, it's time for our users and computers to receive certificates. Users can receive their certificates three ways:

  • Through Group Policy objects (GPOs)

    You can use group policies to automatically enroll user and computer certificates, making the entire certificate process transparent to your end users.

  • Through web enrollment

    You can request a certificate by using http://servername/certsrv (see Exercise 3).

  • Through certificate autoenrollment

    To set up certificate autoenrollment, you configure the local security policy (see Figure 2 and Exercise 2).

Figure 2. Configuring autoenrollment through the Local Security Policy application


Exercise 2 shows the steps you need to take to configure autoenrollment.

Exercise 2: Configuring Certificate Autoenrollment

  1. Open the Local Security Policy MMC by selecting Start => Administrative Tools => Local Security Policy.

  2. In the left pane, click Public Key Policies. In the right pane, right-click Certificate Services Client - Auto-Enrollment and choose Properties.



  3. In the Configuration Model drop-down list, choose Enabled and click OK.




Exercise 3 will show you how to get a certificate using a web browser.

Exercise 3: Request a Certificate Using Your Web Browser

  1. Open Internet Explorer by selecting Start => Internet Explorer.

  2. Enter http://server1/certserv in the Address bar. Note: server1 should be replaced with whtever the loca server name is.

  3. Click the Request A Certificate link.



  4. On the Request A Certificate page, click the Advanced Certificate Request link.



  5. On the Advanced Certificate Request page, choose Create And Submit A Request To This CA.



  6. If you have a pop-up blocker enabled, you might receive a message about the information bar. Click Close and then right-click the information bar on the top of the website. If a second Information box appears telling you to add the website to the secure site list, click OK.

  7. On the Advanced Certificate Request page, accept the defaults and click the Submit button. (If the Submit button is grayed out, your Internet security settings are too high. Reduce them and try again.)



  8. An information box will appear asking if you want this website to request a certificate. Click Yes.

  9. A box will appear telling you that the certificate was issued to you. To accept this certificate, click Install This Certificate.



  10. At the Web Access Confirmation screen, click Yes. (This confirmation is letting you know that a certificate is being added to your system.)



  11. The Certificate Installed screen appears when installation is complete. Close the web browser.
 
Others
 
- Active Directory 2008 : Configuring Active Directory Certificate Services (part 1)
- Active Directory 2008 : Monitoring and Troubleshooting Active Directory Replication
- Sharepoint 2013 : Organizing and managing information - Associating document templates with content types
- Sharepoint 2013 : Organizing and managing information - Creating a new content type
- Architecting an Enterprise-Level Exchange Server 2013 Environment (part 3) - Designing Exchange Server Infrastructure
- Architecting an Enterprise-Level Exchange Server 2013 Environment (part 2) - Designing Exchange Server Roles in an Exchange Server Environment
- Architecting an Enterprise-Level Exchange Server 2013 Environment (part 1) - Designing Active Directory for Exchange Server 2013
- Sharepoint 2013 : Organizing and managing information - Browsing through content types
- Sharepoint 2013 : Organizing and managing information - Creating site columns
- Sharepoint 2013 : Organizing and managing information - Browsing through site columns
 
 
Top 10
 
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 2) - Wireframes,Legends
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 1) - Swimlanes
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Formatting and sizing lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Adding shapes to lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Sizing containers
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 3) - The Other Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 2) - The Data Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 1) - The Format Properties of a Control
- Microsoft Access 2010 : Form Properties and Why Should You Use Them - Working with the Properties Window
- Microsoft Visio 2013 : Using the Organization Chart Wizard with new data
Technology FAQ
- Is possible to just to use a wireless router to extend wireless access to wireless access points?
- Ruby - Insert Struct to MySql
- how to find my Symantec pcAnywhere serial number
- About direct X / Open GL issue
- How to determine eclipse version?
- What SAN cert Exchange 2010 for UM, OA?
- How do I populate a SQL Express table from Excel file?
- code for express check out with Paypal.
- Problem with Templated User Control
- ShellExecute SW_HIDE
programming4us programming4us