<div>
<div class="content wysiwyg-content">
Hi experts.<br />
<br />
Imagine you have a working domain PKI and a working auto enrollment policy.<br />
Using the certificate mmc for the computer account, you just right click the &quot;personal&quot; folder and &quot;request new certificate&quot; and that's it.<br />
<br />
However, what would you do on a core server that has no mmc? Using the mmc from remote is an option, but then, you can only create a manual certificate request and honestly, I'm not in the mood to figure out these options right now.<br />
<br />
To help me, you have to be in the position to test this.<br />
We will either use the remote mmc or the command line. If command line (powershell or certreq.exe), you need to supply the complete syntax since I was unable to figure it out myself. The certificate needs to be &nbsp;of the same type as you get through the mmc which should be &quot;client authentication&quot; and &quot;server authentication&quot;.
</div>
</div>


Hi experts.

Imagine you have a working domain PKI and a working auto enrollment policy.
Using the certificate mmc for the computer account, you just right click the "personal" folder and "request new certificate" and that's it.

However, what would you do on a core server that has no mmc? Using the mmc from remote is an option, but then, you can only create a manual certificate request and honestly, I'm not in the mood to figure out these options right now.

To help me, you have to be in the position to test this.
We will either use the remote mmc or the command line. If command line (powershell or certreq.exe), you need to supply the complete syntax since I was unable to figure it out myself. The certificate needs to be  of the same type as you get through the mmc which should be "client authentication" and "server authentication".

Obtaining a computer ssl certificate from AD PKI using the command line

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

HTTPS is a protocol for secure communication over a computer network which is widely used on the Internet. HTTPS consists of communication over Hypertext Transfer Protocol (HTTP) within a connection encrypted by Transport Layer Security (TLS) or its predecessor, Secure Sockets Layer (SSL). The main motivation for HTTPS is authentication of the visited website and to protect the privacy and integrity of the exchanged data. HTTPS is widely used for protecting page authenticity on all types of websites, securing accounts and keeping user communications, identity and web browsing private.

SSL / HTTPS

Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability. OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised, including authentication, passwords and threats to systems and programs.