Learn how to use Active Directory Certificate Services (AD CS) on WS 2016

In an increasingly connected world, data and communication security is paramount. Active Directory Certificate Services (AD CS) on Windows Server 2016 provides a robust solution for managing digital certificates, ensuring authentication, and securing information exchanges. This comprehensive course will guide you through the fundamental concepts, technical configuration, and best practices to fully leverage the capabilities of AD CS.

1. Introduction to Certificates and Encryption

This section explores the basics of encryption and its essential role in data protection. You will learn what a Certificate Authority (CA) is and how to install an enterprise CA, as well as the different types of certificate templates available.

2. Configuration of the PKI Infrastructure

In this section, you will discover how to configure an effective PKI infrastructure. You will learn to install and configure a root CA and subordinate CA, deploy a multi-site PKI infrastructure, and set up CEP and CES servers. Additionally, you will see how to implement an NDES (SCEP protocol) server and the web interface for a Certification Authority (CA), all while securing an IIS web server.

3. Certificate Management

This section focuses on the practical management of certificates within an organization. You will learn how to enable and use automatic certificate enrollment, manage EFS (Encrypting File System) certificates, and export or import certificates with or without their private keys.

4. Security and Certificate Revocation

Security is a crucial aspect of certificate management. In this section, you will understand how certificate revocation works and how to publish a Certificate Revocation List (CRL). You will also learn how to publish CRLs accessible via the web and resolve issues related to an expired CRL on a root CA.

5. Practical Applications and Use Cases

This section addresses concrete use cases for AD CS services. You will discover how to create a recovery agent for retrieving certificates, install and configure an OCSP (Online Certificate Status Protocol) responder, as well as back up and restore a Certification Authority.

6. Smart Card Management

Finally, this section focuses on using smart cards within AD CS. You will learn how to create an enrollment agent for managing smart cards, as well as how to purchase these cards and connect using them. The section will conclude with an overview of the SafeNet Authentication Client (SAC) and its installation.

Conclusion

This course will equip you with all the skills necessary to master Active Directory Certificate Services on Windows Server 2016. Whether you are an IT professional looking to enhance your knowledge or a system administrator aiming to secure your environment, this course is designed for you. Join us to develop your expertise in digital security!