Large key character lengths provide optimal security, but they can affect server performance. It is recommended that you keep the default setting of or, if appropriate for your deployment, reduce key character length to Click Next. On the CA Name page, keep the suggested common name for the CA or change the name according to your requirements, and then click Next. The default setting of five years is recommended. On the CA Database page, in Certificate database location and Certificate database log location , specify the folder location for these items.
If you specify locations other than the default locations, make sure that the folders are secured with access control lists ACLs that prevent unauthorized users or computers from accessing the CA database and log files. Manage certificate enrollment.
Manage certificate revocation. Manage certificate trusts. Prerequisites To get the best learning experience from this module, you should have knowledge and experience of: Windows Server or Windows Server Core networking technologies.
Introduction to AD DS. Implement Group Policy Objects. Manage advanced features of AD DS. Implement and manage Active Directory Certificate Services. This browser is no longer supported. Download Microsoft Edge More info.
Contents Exit focus mode. Note To comment on this content or ask questions about the information presented here, please use our Feedback guidance. In this article. Root and subordinate CAs are used to issue certificates to users, computers, and services, and to manage certificate validity.
0コメント