Solved

Certificate Authority - Server 2012 R2

Posted on 2014-12-17
2
132 Views
Last Modified: 2014-12-18
We just upgraded our domain controllers to 2012 R2.
I noticed we do not have a certificate authority in our environment.

Do we need one, and what are the ramifications if we do not have one in the environment.

What is best practice?

Thanks
0
Comment
Question by:techgenious
2 Comments
 
LVL 57

Accepted Solution

by:
Cliff Galiher earned 500 total points
ID: 40504936
You may or may not need a CA for your environment. That is entirely about your environment itself. As an example, does everyone need a file server?  Many networks do. But those that are heavily cloud-centric may be using OneDrive for Business or DropBox Business and a file server has no benefit.  This is true for almost every role, and ADCS is no different. There are some use cases for an internal CA, and there are some environments  where it'd offer no benefit whatsoever.

As with any network planning, start with what you want to do, then pick the services that get you there. If nothing you want requires a CA, don't install ADCS anywhere. If something you want has a PKI dependency, or if a role explicitly requires a CA, you'll find out quickly during your planning.

-Cliff
0
 
LVL 4

Expert Comment

by:akalyan911
ID: 40505071
it is depend on your domain environment, You can install the AD - Certificate Services if is required. without installation also you can work out..

AD CS starting in Windows Server 2008 provides customizable services for creating and managing public key certificates used in software security systems that employ public key technologies ... in your environment is small and not having much software application, i would suggest you to not install..

you can go through the Microsoft Technet articles from more information..
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Resolve DNS query failed errors for Exchange
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will walk an individual through the process of configuring basic necessities in order to use the 2010 version of Data Protection Manager. These include storage, agents, and protection jobs. Launch Data Protection Manager from the deskt…
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question