https://store-images.s-microsoft.com/image/apps.52932.7d69120a-fdac-4f50-9a74-044eca6defcc.6c74c6fc-8eaa-4ed7-8fb5-7e662975fc0f.41a11254-d58e-4e70-bc2e-6e16df9d4dd2

Active Directory Certificate Services 2016 PKI

Cloud Infrastructure Services
Deploy Active Directory Certificate Services PKI to your Azure tenant IaaS.
https://store-images.s-microsoft.com/image/apps.46963.7d69120a-fdac-4f50-9a74-044eca6defcc.6c74c6fc-8eaa-4ed7-8fb5-7e662975fc0f.721d7395-ae99-4536-8193-5b2f56b2a5d9
https://store-images.s-microsoft.com/image/apps.46963.7d69120a-fdac-4f50-9a74-044eca6defcc.6c74c6fc-8eaa-4ed7-8fb5-7e662975fc0f.721d7395-ae99-4536-8193-5b2f56b2a5d9

Active Directory Certificate Services 2016 PKI

Cloud Infrastructure Services

Deploy Active Directory Certificate Services PKI to your Azure tenant IaaS.

Active Directory Certificate Services PKI Solution on Windows Server 2016

Deploy an Active Directory Certificate Authority. Build a new public key infrastructure (PKI) or setup a Subordinate CA to an already established PKI hierarchy. Provide public key cryptography, digital certificates, and digital signature capabilities for your organization.

Deploy certificates to your users, devices or services on Active Directory via group policy.

You can use AD CS to enhance security by binding the identity of a person, device, or service to a corresponding private key. AD CS gives you a cost-effective, efficient, and secure way to manage the distribution and use of certificates.

Applications supported by AD CS include Secure/Multipurpose Internet Mail Extensions (S/MIME), secure wireless networks, virtual private network (VPN), Internet Protocol security (IPsec), Encrypting File System (EFS), smart card logon, Secure Socket Layer/Transport Layer Security (SSL/TLS), Secure Web Servers and digital signatures.

AD Certificate Services features

  • Key Attestation now supports the use of Smart Card Key Storage Providers
  • Network Device Enrollment Service (NDES)
  • Online Certificate Status Protocol (OCSP)
  • Use the existing endpoint identity information that exists in AD to register for certificates (to avoid re-registering)
  • Configure AD Group Policies to dictate which users and machines are allowed which types of certificates
  • Automate Certificate Provisioning and Lifecycle Management
  • Documentation can be found on - Setup Active Directory Certificate Services in Azure

    https://store-images.s-microsoft.com/image/apps.46963.7d69120a-fdac-4f50-9a74-044eca6defcc.6c74c6fc-8eaa-4ed7-8fb5-7e662975fc0f.721d7395-ae99-4536-8193-5b2f56b2a5d9
    https://store-images.s-microsoft.com/image/apps.46963.7d69120a-fdac-4f50-9a74-044eca6defcc.6c74c6fc-8eaa-4ed7-8fb5-7e662975fc0f.721d7395-ae99-4536-8193-5b2f56b2a5d9