I have a question if I want to setup certificate on AD, where all computers and servers join to the domain will automatically generate a cert and also set to expire if the computer is not on the domain for sometime, what would be the best way to go about that. I also want to use the same cert for Cisco Wireless Access Points to handle authentication on TACAS. Which means that I also want the ability to generate certificate for linux devices. Also, I want the ability to run PKI encryption on Outlook. Lots of requirements and I am hoping a all in one solution can handle this. Thanks for reading.