Deploying a Standalone Root CA in Windows Server 2012 R2

preview_player
Показать описание
In this video we go over how to configure and install a certificate authority node within Windows Server 2012 R2. I need to create one, so I could have a PKI infrastructure in my network while using SCCM 2012 R2.

Support the video by giving it a "LIKE", it will help me out.


  1. BTNHD
  2. Windows Server 2012 (Operating System)
  3. Root Certificate
  4. Microsoft Windows (Operating System)
  5. certificate authority
  6. PKI infrastructure
Рекомендации по теме
Deploying a Standalone 0:13:13

Deploying a Standalone Root CA in Windows Server 2012 R2

01. Setup a 0:06:04

01. Setup a Standalone Root Certificate Authority | Windows Server 2019

20412D_Mod6_Lab A_E1-Deploying a 0:06:51

20412D_Mod6_Lab A_E1-Deploying a Stand-Alone Root CA

07. Install and 0:18:56

07. Install and Configure Offline Standalone Root Certificate Authority

02. Installing an 0:09:50

02. Installing an Enterprise Root Certificate Authority | Windows Server 2019

08. Install and 0:22:44

08. Install and Configure Enterprise Subordinate Root CA Part-1

Building your first 0:09:41

Building your first standalone Root CA

Part - 2: 0:09:52

Part - 2: Install the Standalone Offline Root CA

Windows Certificate Authority 0:19:48

Windows Certificate Authority Design and Installation - Install the Offline Root CA Part 1

Windows Server 2019 0:35:16

Windows Server 2019 Training 01– Introduction AD Certificate Service - Deploy Root & Subordinat...

*NEW* Install & 0:31:56

*NEW* Install & Configure Offline Root CA on Server 2016 (Part 1)

Instaling an enterprise 0:15:07

Instaling an enterprise root CA and deploy root certificate by GPO

Standalone CA 0:09:12

Standalone CA

01- Deploy Microsoft 0:10:02

01- Deploy Microsoft Certificate Services (Offline root CA)

Offline Root CA 0:01:33

Offline Root CA deployment

Active Directory Certificate 0:21:36

Active Directory Certificate Services Install & Config in just 20mins

Install Enterprise Root 0:06:19

Install Enterprise Root Certificate Authority on Windows Server 2022!

Deploying a PKI 0:31:24

Deploying a PKI Offline Root CA - SECNET E13

Deploying A Multi-Tier 0:43:57

Deploying A Multi-Tier PKI (Public Key Infrastructure) Inside an Active Directory Domain Using ADCS

06. Lab Setup 0:10:10

06. Lab Setup to Deploy a Two-Tier PKI Environment on Windows Server 2019

Enterprise Root CA 0:10:59

Enterprise Root CA Installation For RDS In Server 2019

Deploying an Enterprise 0:18:23

Deploying an Enterprise Root CA

How to install 0:05:11

How to install Issuing CA (subordinate) certificate authority in windows server

Installing Enterprise Root 0:07:19

Installing Enterprise Root Certificate Authority in Windows Server 2012 R2

Комментарии
Автор

Good video. I might suggest that you might want to update it and Use SHA256 with HASH choice with the rapidly approaching death of SHA1. Be aware that if you create an Issuing CA that uses SHA256 and the enterprise is still, for some reason using SCCM2007 and they start auto-enrolling their machines, they won't work with SCCM2007 as it's not SHA2 compatible.

Also, before installing the CA role don't forget about placing the CAPolicy.inf file in the C:\Windows folder and make it for internal use only. Here's the one I use. Finally, if your organization every wants to pass the Microsoft PKI audit the offline Root CA must never, ever have been connected to a network. Cheers!

Example CAPolicy.inf

[Version]
Signature=$Windows NT$

[certsrv_server]
LoadDefaultTemplates=0

[PolicyStatementExtension]
Policies=InternalUseOnly

[InternalUseOnly]
OID=2.5.29.32.0
Notice= "This PKI is intended for internal use only."

InquisiitorWHK
Автор

I have tried this on 2008R2 and followed all the steps exactly. BIt wheh I try to publish the CRL I am getting an RPC error "the rpc server is not listening. 0x6b3 (win32 1715 )
In the event viewer there are many errors related to this. I am unable to start the Acive Directory Certificate Services

sanderravesteijn
Автор

would be useful if there was some explanation for the configurations? Anyone can just click on items but you need to know why??? Did not find this video adequate?

kimdav