windows server 2008 PKI
hi all
im implementing windows server 2008 pki using ad certificate service want implement 2 tier pki 1 standalone offline ca , enterprise subordinate ca
i have article
http://blogs.technet.com/b/askds/archive/2009/10/13/designing-and-implementing-a-pki-part-ii.aspx
it's 1 there things can't figure ou
how can use capolicy.inf file , the post-installation script , myhttppkivroot , configure that
and if didn't use of above happen pki servers?
thanks
tarek khairy
i've seen post-installation script url pointed crl distribution point / ca certificate distribution point. should create virtual directory on web server going host these data (if ca server you could create virtual directory pointing c:\windows\system32\certsrv\certenroll directory).
as url should consider url should accessible (e.g. local network, internet or both). if possible suggest url accessible both local network , internet used crl checking.
kind regards
martin
Windows Server > Security
Comments
Post a Comment