Active Directory Certificate Services (AD CS) provides customizable services for issuing and managing certificates in software security systems that use public key technologies. For background information about public key cryptography and the benefits of having a public key infrastructure (PKI), see Public Key Infrastructures.
You can use AD CS to create one or more certification authorities (CA) to receive certificate requests, verify the information in the requests and the identity of the requester, issue certificates, revoke certificates, and publish certificate revocation data.
With AD CS, you can also:
-
Set up Web enrollment, the Network Device Enrollment Service, and the Online Responder service.
-
Manage enrollment and revocation of certificates for users, computers, services, and network devices such as routers.
-
Use Group Policy to distribute and manage certificates.
Additional references
-
Active Directory Certificate Services Overview
-
Common Scenarios for Using Active Directory Certificate Services
-
Setting Up Active Directory Certificate Services
-
Managing a Certification Authority
-
Use the Network Device Enrollment Service
-
Using Policy to Manage Active Directory Certificate Services
-
Troubleshoot Active Directory Certificate Services
-
Active Directory Certificate Services Resources