[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 37
  • Last Modified:

AD Certificates & best practises

Hi All
Can anyone advise me on AD certificates
Thank you
0
MarK PercY
Asked:
MarK PercY
2 Solutions
 
Kundan GuptaSystem EngineerCommented:
Log on to server as a domain administrator.
Click Start, point to Administrative Tools, and then click Server Manager.
In the Roles Summary section, click Add roles.
On the Select Server Roles page, select the Active Directory Certificate Services check box. Click Next two times.
On the Select Role Services page, select the Certification Authority check box, and then click Next.
On the Specify Setup Type page, click Enterprise, and then click Next.
On the Specify CA Type page, click Root CA, and then click Next.
On the Set Up Private Key and Configure Cryptography for CA pages, you can configure optional configuration settings, including cryptographic service providers. However, for basic testing purposes, accept the default values by clicking Next twice.
In the Common name for this CA box, type the common name of the CA, RootCA1, and then click Next.
On the Set the Certificate Validity Period page, accept the default validity duration for the root CA, and then click Next.
On the Configure Certificate Database page, accept the default values or specify other storage locations for the certificate database and the certificate database log, and then click Next.
After verifying the information on the Confirm Installation Options page, click Install.
Review the information on the confirmation screen to verify that the installation was successful.
0
 
MarK PercYAuthor Commented:
HI Kundan Gupta

we have these in place already however thank you. The certs are there they just haven't been adhered too I'd like to know the best practices for them?

Thank you
0
 
SandeepSr System AdministratorCommented:
Please have a look at below link for Best Practices for Certificate Management.

https://technet.microsoft.com/en-gb/library/bb680496.aspx
0

Featured Post

Free recovery tool for Microsoft Active Directory

Veeam Explorer for Microsoft Active Directory provides fast and reliable object-level recovery for Active Directory from a single-pass, agentless backup or storage snapshot — without the need to restore an entire virtual machine or use third-party tools.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now