Little about Windows Server 2008 Active Directory Certificate Services (AD CS)

by Nideesh C on February 9, 2011 · 3 comments

in Server2008




Windows Server 2008 Active Directory Certificate Services (AD CS) is known as Certificate Services in Server 2003. In Server 2003, Certificate Services is installed from ADD/REMOVE Windows components. In Server 2008, Active Directory Certificate Services (AD CS) is installed from +Add Roles. AD CS is a low cost method of issuing digital certificates internally and maintaining a Certificate Authority (CA) infrastructure.

Active Directory Certificate Services Roles

- Enterprise root certification authority
This is the top level, most trusted CA in an organization which should be installed before any other roles. This role should be highly protected as this is a most important role in CA infrastructure.

- Enterprise subordinate certification authority
Enterprise subordinate CA can be used to off load work from Enterprise root CA. This CA can issue digital certificates internally but it must get a certificate from Enterprise root CA.

- Stand-alone root certification authority
As the name implies, this is the top level CA that is independent from Enterprise root CA. Stand-alone root CA can be deploy for testing or particular purposes.

- Stand-alone subordinate certification authority
As the name implies, subordinate CA can be used to off load work from Stand-alone root CA. This CA can issue digital certificates but it must get a certificate from Stand-alone root CA.

How to install Windows Server 2008 Active Directory Certificate Services (AD CS)

1. Open Server Manager
2. Click on Add Roles
3. Click Next, chose “Active Directory Certificate Services”, click Next, click Next
4. Choose required roles services.
5. Choose Enterprise CA
6. Choose Root CA
7. Choose create new private key
8. Choose default settings for private key encryption settings
9. Choose the name of the CA, example: Organization-RootCA
10. Choose 5-year validity period.
11. Choose certificate database and log location
12. Confirm selections and click Install

After Enterprise root CA is install, it can be managed from Certification Authority console, Start>All
Programs>Administrative Tools>Certification Authority

Not Satisfied ? Just search & get the result

Related Posts Plugin for WordPress, Blogger...
Be Sociable, Share!

Related posts:

  1. How to implement a file server on Windows Server 2008 File Services.
  2. Roles and Features of Core Windows Server 2008
  3. How to Manage Windows Server 2008 Core Server Roles
  4. Windows Server 2003 Active Directory Terminology and Concepts
  5. How To Publish Resources in Active Directory

Tagged as: , , , , , , , , , ,

Article by Nideesh C

Me, freelance system administrator having the qualification of Diploma in Electronics & Tele-communication + MCSE + CCNA + CST + 5 years of experience in IT field.

If you like This post, you can follow TheOnlineTutorials on Twitter.

Contact me Via email: support@theonlinetutorials.com

Subscribe to feed via Feed or EMAIL to receive instant updates.

Legal Disclaimer:All information found on the site is without any implied warranty of fitness for any purpose or use whatsoever. Content author/site administrator is not responsible for any loss occurred due to mistakes in this tutorial. Use this tutorial website at your own risk.

{ 3 comments… read them below or add one }

1 valsh February 21, 2011 at 12:26 am

best windows server tutorial. tks

Reply

2 Indu February 22, 2011 at 9:04 am

Little about Windows Server 2008 Active Directory Certificate Services (AD CS)

Reply

3 dini February 24, 2011 at 5:31 am

thankyou man

Reply

Leave a Comment

Previous post:

Next post: