Time
5 hours 18 minutes
Difficulty
Intermediate
CEU/CPE
20

Video Transcription

00:04
emcee. I say Windows Server 2012. Exam for 12. Configuring advanced windows Server 2012. Service's Mal. You're six.
00:13
Marginal. Six.
00:15
We're gonna be talking about implementing archive directory certificate Service's
00:21
lesson. Wanna speaking? I overview. We're gonna look at overview of P K I.
00:26
Lesson two's deploying. See a certification authority,
00:31
less interest, deploy, and money is certificate templates.
00:34
Then we have a lap because deployment. Configuring the sea, eh, Archy?
00:39
Let's they want p k I overview. We're gonna look at what he's speaking. I
00:44
we're gonna look at what are the components of a picky I solution
00:49
we're gonna look at once they see a the overview of active director certificates. Serve a role in 2012
00:56
on new features of active director certificates Service the Windows server 2012.
01:03
Um,
01:04
what is speaking? I probably key infrastructure. What does he do?
01:11
Picker includes encryption technology processes. Service is on software.
01:18
The assistant organization Security Communication
01:22
on business transactions.
01:26
Um,
01:27
p k I provides confidentiality,
01:30
integrity,
01:33
authenticity, unknown repudiation.
01:38
It gives you all that.
01:40
I mean, the information being sent. It's confidential.
01:42
That information has not been modified as integrity.
01:47
That's actually coming for that person is authentic. Unknown. Repudiation means are whoever sense it. They cannot deny the sentence attached to them.
01:56
What are the components of a picky I solution? Include this advocate certification authority.
02:04
Sufficient authority issues are managed. Dichter Certificate for computers
02:08
Service's I uses.
02:13
If you were, you deploy the sea a certification authority. You actually deploy picky I'II organization.
02:19
Then we also have the digital certificates.
02:24
This is like your electronic passport.
02:28
It proves your identity.
02:30
The digital certificates as electronic credentials. The associated with a public key on a private key
02:38
can be used to authenticate uses. Another devices on the network.
02:46
Also details that you can make. The software code is wrong from a trust that sauce
02:54
certificate templates.
02:58
So you come template. Describe the content and properties of a digital certificates.
03:07
For example, when requested set of a for sale Get from a active directors Certificates Service's Enterprise C A.
03:15
Whoever is requesting so you'll be able to depend on is our access to select a variety off certificate type based on the certificate templates.
03:27
Example would be use up
03:30
on coach signing
03:34
other one. Cedric A relocation laces out our components off p k I.
03:42
Our circle of evocation list are completely Italy Signed. Lease does, sir. Ticket has been revoked.
03:49
These are published
03:50
periodically.
03:52
So is used to verify certificate the vocation status.
03:58
Online responder
04:00
are part of online's certificates Status protocol
04:06
these rules service, Windows Server 2000 and 2012.
04:13
Um,
04:15
for example, I responder come receiving request to check for revocation of his certificate.
04:20
We are required Declined to download the entire c r l.
04:27
So the online responders speed up
04:30
check in
04:30
revocation status off his certificates,
04:35
Then we are public. He probably keep based application and service. Is
04:42
this application of service Is our support public key encryption.
04:49
Then we have certificated of Senate game management tools.
04:54
This management tools management tools
04:59
can be Come on, Lyle. Gooey based.
05:01
Okay,
05:02
they can use. You can use the configure. See, ace
05:05
used to recover archive Private key.
05:10
We can use this seconds circuit and CIA management tool to import and export keys on certificates.
05:16
We can use them to publish.
05:18
Um, see, it says get in. Sierra.
05:23
Also manage issues, certificates,
05:27
other components includes
05:30
authority, information, access,
05:35
you know, see? Aye, aye. Aye. And cdp
05:41
um this determining location where I see a syndicate can be found, I'm validated.
05:46
Then we have the hardware security module.
05:49
There's an optional secure cryptographic hardware device.
05:55
This gun accelerated cryptographic processes for managing digital certificates
06:00
in the eyes. I really secure the environment. You we have an HSM.
06:05
You just seem normal is attached to a computer.
06:10
This is option. Are you don't thought that when I see a
06:15
it's C. A Is a well designer. Islay trusted service in an enterprise. They provide users and computer with certificates they also manage on published e C R l.
06:27
Sometimes they respond to a C S B R requests.
06:30
As you see a
06:32
you can start to see a environment by deploying active director set of service Active directors Certificate Service's Roll on Windows Server 2012
06:44
The four c A
06:46
When you saw the foresee established U P. K. I. In the Network
06:49
Overview Active director said that gets service server room we in December 2012.
06:55
The role service off a. D. C. S included. See a certificate authority.
07:00
You see it's entity that issue certificates to use this computer in the service is
07:03
see a Web in romance
07:06
allow it is a matter to issue and renew certificate for uses
07:14
by going to the webs of Secure website.
07:16
Also include online responder. We discuss it
07:23
think includes Mike Own Sorry e cruise network device and Roman service.
07:29
Move with this component rotter switches and other network devices can obtain certificates from a picky aye or active director said Forget service is
07:38
you also are syndicate and Roman Web service. Allow Uses
07:43
two in a row for certificate online.
07:46
The secure website It can,
07:47
um, and roll there,
07:50
new futures of academics said to get seven the Windows Server 2000 and 12.
07:57
If fully integrates with server manager that from several manager, you can install it there.
08:03
You can also manage,
08:05
um says Okay, service is using powershell.
08:09
Yeah, that's also included in
08:13
um, Windows Server 2012.
08:18
Um,
08:20
new surgical template version.
08:24
Also support for automatic renewal off certificates for Non Domi
08:28
joint computers.
08:31
Support for virtual smart card is also available.
08:35
You know, we have probably can privacy a public See A is something like very son commercial.
08:43
These are trusted by many external clients.
08:48
You have to apply for them. They expensive. Then we have the internal privacy, eh? That's when you set up within your organization

Up Next

Microsoft Certified Solutions Associate (MCSA) Certification

Our self-paced online Microsoft Certified Solutions Associate (MCSA) certification training course will teach you all you need to know for the certification exam: how to configure file and print services, how to deploy, manage and maintain Microsoft servers, among other relevant topics.

Instructed By

Instructor Profile Image
Michael Boberg
CEO of Broadline Enterprises, LLC
Instructor