7.19. The Network Device Enrollment Service
As you learned in your previous study of Active Directory Certificate Services, with Windows Server 2008 Microsoft released its own version of the Simple Certificate Enrollment Protocol for network devices and called it the Network Device Enrollment Service. Using this service, administrators can create a simple method for network devices, such as routers and switches, to attain certificates and become part of the PKI.
For the 70-647 certification exam, you need to remember that the purpose of NDES is to enhance security in your environment. However, it is by no means required. The main reason an organization would want to use it is to secure multiple Windows Server 2008 CAs by using IPsec on routers ...
Get MCITP: Windows Server® 2008 Enterprise Administrator, Study Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
