Categories:
DH Keys (136)
DSA Keys (156)
EC Keys (161)
Firefox (32)
General (13)
Google Chrome (25)
Intermediate CA (155)
Java VM (20)
JDK Keytool (25)
Microsoft CertUtil (26)
Mozilla CertUtil (18)
OpenSSL (237)
Other (17)
Portecle (38)
Publishers (961)
Revoked Certificates (21)
Root CA (87)
RSA Keys (1722)
Tools (47)
Tutorial (7)
What Is (21)
Windows (128)
Collections:
Other Resources:
Certificate Enrollment Policy Web Service Overview
The Certificate Enrollment Policy Web Service is an Active Directory Certificate Services (AD CS) role service that enables users and computers to obtain certificate enrollment policy information. Together with the Certificate Enrollment Web Service, this enables policy-based certificate enrollment when the client computer is not a member of a domain or when a domain member is not connected to the domain.
The Certificate Enrollment Policy Web Service uses the HTTPS protocol to communicate certificate policy information to network client computers. The Web service uses the LDAP protocol to retrieve certificate policy from Active Directory Domain Services (AD DS) and caches the policy information to service client requests. In previous versions of AD CS, certificate policy information can be accessed only by domain client computers that are using the LDAP protocol. This limits policy-based certificate issuance to the trust boundaries established by AD DS forests.
Publishing enrollment policy over HTTPS enables the following new deployment scenarios:
Additional references
✍: Microsoft
2016-08-01, 764👍, 0💬
Popular Posts:
Certificate Summary: Subject: SecureTrust CA Issuer: SecureTrust CA Expiration: 2029-12-31 19:40:55 ...
What should I do, I deleted cert8.db for Firefox by a mistake on my computer? You don't need to do a...
Where to find tutorials on using certificate manager command line tool "certmgr.exe" on Windows? Her...
How to get a list of all certificates in "Third-Party Root Certification Authorities" certificate st...
What is ASN.1 INTEGER field type? How to specify INTEGER field type in OpenSSL "asn1parse" command? ...