filmov
tv
Microsoft Active Directory Certificate Services (AD CS) using Azure Blob Storage as CDP and AIA
Показать описание
Microsoft Active Directory Certificate Services (AD CS) using Azure Blob Storage as CDP and AIA Location
#microsoftadds #azureblob #microsoftazure
Creating a Microsoft ADCS with Azure Blob Storage as CDP/AIA Points.
[Version]
Signature="$Windows NT$"
[Certsrv_Server]
RenewalKeyLength=2048 ; recommended 4096
RenewalValidityPeriod=Years
RenewalValidityPeriodUnits=20
AlternateSignatureAlgorithm=0
CA Configurations on Root CA
Certutil -setreg CA\DSConfigDN "CN=Configuration,DC=Encon,DC=com"
Certutil -setreg CA\CRLPeriodUnits 52
Certutil -setreg CA\CRLPeriod "Weeks"
Certutil -setreg CA\CRLDeltaPeriodUnits 0
Certutil -setreg CA\CRLOverlapPeriodUnits 12
Certutil -setreg CA\CRLOverlapPeriod "Hours"
Certutil -setreg CA\ValidityPeriodUnits 20
Certutil -setreg CA\ValidityPeriod "Years"
CDP/AIA Points command on Root CA
Restarting ADCS
net stop certsvc && net start certsvc
certutil -crl
[Version]
Signature="$Windows NT$"
[PolicyStatementExtension]
Policies=InternalPolicy
[InternalPolicy]
OID= 1.2.3.4.1455.67.89.5
[Certsrv_Server]
RenewalKeyLength=2048
RenewalValidityPeriod=Years
RenewalValidityPeriodUnits=10
LoadDefaultTemplates=0
AlternateSignatureAlgorithm=0
Publishing Root CA Certs on Issuing CA
certutil -f -dspublish "C:\CA01_Encon Root CA.crt" RootCA
certutil -f -dspublish "C:\Encon Root CA.crl" CA01
certutil -addstore -f root "CA01_Encon Root CA.crt"
certutil -addstore -f root "Encon Root CA.crl"
Submitting Issuing CA Request to Root CA
CA Configurations on Issuing CA
Certutil -setreg CA\CRLPeriodUnits 5
Certutil -setreg CA\CRLPeriod "Weeks"
Certutil -setreg CA\CRLDeltaPeriodUnits 5
Certutil -setreg CA\CRLDeltaPeriod "Days"
Certutil -setreg CA\CRLOverlapPeriodUnits 50
Certutil -setreg CA\CRLOverlapPeriod "Hours"
Certutil -setreg CA\ValidityPeriodUnits 5
Certutil -setreg CA\ValidityPeriod "Years"
CDP/AIA Points on Issuing CA
------------------------------------------------------------------------------------------------------------------------------------------------------------
For latest updates, follow us on –
#microsoftadds #azureblob #microsoftazure
Creating a Microsoft ADCS with Azure Blob Storage as CDP/AIA Points.
[Version]
Signature="$Windows NT$"
[Certsrv_Server]
RenewalKeyLength=2048 ; recommended 4096
RenewalValidityPeriod=Years
RenewalValidityPeriodUnits=20
AlternateSignatureAlgorithm=0
CA Configurations on Root CA
Certutil -setreg CA\DSConfigDN "CN=Configuration,DC=Encon,DC=com"
Certutil -setreg CA\CRLPeriodUnits 52
Certutil -setreg CA\CRLPeriod "Weeks"
Certutil -setreg CA\CRLDeltaPeriodUnits 0
Certutil -setreg CA\CRLOverlapPeriodUnits 12
Certutil -setreg CA\CRLOverlapPeriod "Hours"
Certutil -setreg CA\ValidityPeriodUnits 20
Certutil -setreg CA\ValidityPeriod "Years"
CDP/AIA Points command on Root CA
Restarting ADCS
net stop certsvc && net start certsvc
certutil -crl
[Version]
Signature="$Windows NT$"
[PolicyStatementExtension]
Policies=InternalPolicy
[InternalPolicy]
OID= 1.2.3.4.1455.67.89.5
[Certsrv_Server]
RenewalKeyLength=2048
RenewalValidityPeriod=Years
RenewalValidityPeriodUnits=10
LoadDefaultTemplates=0
AlternateSignatureAlgorithm=0
Publishing Root CA Certs on Issuing CA
certutil -f -dspublish "C:\CA01_Encon Root CA.crt" RootCA
certutil -f -dspublish "C:\Encon Root CA.crl" CA01
certutil -addstore -f root "CA01_Encon Root CA.crt"
certutil -addstore -f root "Encon Root CA.crl"
Submitting Issuing CA Request to Root CA
CA Configurations on Issuing CA
Certutil -setreg CA\CRLPeriodUnits 5
Certutil -setreg CA\CRLPeriod "Weeks"
Certutil -setreg CA\CRLDeltaPeriodUnits 5
Certutil -setreg CA\CRLDeltaPeriod "Days"
Certutil -setreg CA\CRLOverlapPeriodUnits 50
Certutil -setreg CA\CRLOverlapPeriod "Hours"
Certutil -setreg CA\ValidityPeriodUnits 5
Certutil -setreg CA\ValidityPeriod "Years"
CDP/AIA Points on Issuing CA
------------------------------------------------------------------------------------------------------------------------------------------------------------
For latest updates, follow us on –
0:21:36
0:30:55
0:33:26
0:16:18
1:07:36
0:43:57
0:06:19
0:34:53
0:09:50
0:10:51
0:40:19
0:13:05
0:15:23
0:04:15
0:18:08
0:08:01
0:59:49
0:56:57
0:07:31
0:52:21
0:01:44
0:12:49
0:05:15
0:07:20