Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Certificate Services

Posted on 2014-10-18
3
Medium Priority
?
188 Views
Last Modified: 2014-10-18
Hi All

I'm setting up Certificate Services for internal use in our AD domain which has a parent / child domain structure. The parent domain contains only DC accounts. All clients and users are housed in the child domain. I have built an offline root CA without issue following a TechNet guide. The next thing I need to do is build the subordinate CA to issue the certificates - no issues with doing this but where do I place it ? Should it be in the parent domain or should it be in the child domain or do I need to build two subordinate CAs one in each domain ? Your advice will be greatly appreciated !
0
Comment
Question by:Karmez
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 20

Accepted Solution

by:
Peter Hutchison earned 2000 total points
ID: 40388645
It depends whether you want certificates for users or certificates for servers. If both then you need seperate CAs for each domain.
0
 

Author Comment

by:Karmez
ID: 40388658
Thanks Peter - I am going to need both so I will put subordinates in each domain.
0
 

Author Closing Comment

by:Karmez
ID: 40388660
Amazing how fast I got the answer I needed - thanks Peter
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is written by John Gates, CISSP. Gates, the SNUG President-Elect, currently holds the position of Manager of Information Systems at Lake Park High School in Roselle, Illinois.
What we learned in Webroot's webinar on multi-vector protection.
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question