2-安装和配置活动目录证书服务(AD CS).pptVIP

Module x: Title Course xxxxy * Module x: Title Course xxxxy * 1) Start a discussion by explaining that a CA solution can be implemented as an internal private CA or an organization can use an external public CA. 2) Discuss the following: What are the advantages and disadvantages for using an external public CA? Answers can be: Trusted by more clients Minimal administration Greater costs What are the advantages and disadvantages for using an internal CA? Answers can be: Greater control Ability to use customized templates Difficulty for external clients to trust your internal CA Module x: Title Course xxxxy * Discuss: Root and Subordinate CAs. Stress the need to protect the Root CA, since trusted Root CA automatically trusts every subordinate CA that has a valid CA certificate in the hierarchy. Reasons for deploying a subordinate CA. 2. Source information: Active Directory? Certificate Services Help: Public Key Infrastructures Module x: Title Course xxxxy * Discuss: Stand-alone and enterprise CAs CAs that issue certificates to clients over the Internet Root CA is typically configured as a stand-alone CA Module x: Title Course xxxxy * Describe the key points related to considerations for installing a Root CA. When discussing the private key configuration, mention that any provider that starts has a number sign (#) in the name, is a Cryptography Next Generation provider. Module x: Title Course xxxxy * Demonstrate how to install the AD CS server role as an Enterprise Root CA. Module x: Title Course xxxxy * Describe the general process for installing a subordinate CA. Module x: Title Course xxxxy * Demonstrate how to open the Certification Authority console and then describe the general nodes available in the console. Module x: Title Course xxxxy * Describe base and delta CRLs. Module x: Title Course xxxxy * Demonstrate how to configure AIA and CRL availability. 第2章：安装和配置活动目录证书服务（AD CS） 单元概述 PKI(公共密钥基础结构)概览 部署CA层次架构 安装 AD CS 管理 CA Lesson 1: PKI(公共密钥基础结构)概览 什么是