Configuring Auto-Enrollment
With the CA installed, certificates can now be issued. Certificates for application servers such as web servers, Microsoft Exchange servers, Microsoft Lync servers, and so on are often deployed manually by an administrator. Larger deployments of certificates, however, could involve hundreds, thousands, or more certificates and therefore require an automated enrollment process. Windows Server 2012 provides such an automated process, both for domain members and nondomain members.
The following example demonstrates the deployment of a computer certificate to all domain members. The following high-level steps are involved:
1. Assign template permissions.
2. Enable the template on the CA.
3. Configure a group policy object ...
Get Windows Server® 2012 Unleashed now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
