Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Subscribe
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Active Directory: Deploying and managing Certificate Service
Rating: 4.3 out of 5(231 ratings)
9,490 students

Active Directory: Deploying and managing Certificate Service

Deploying and managing Certificates (ADCS)
Created byVitalii Shumylo
Last updated 10/2025
English

What you'll learn

  • Deploy CAs
  • Administer CAs
  • Troubleshoot and maintain CAs
  • Getting know with CA technology

Course content

3 sections22 lectures2h 30m total length

  • Building Windows Server 2025 AD Domain from Hyper-V Lab9:30
  • Integrating Server Core via PowerShell Domain Setup5:48
  • Configuring Domain Members and RSAT Tools Integration8:06
  • Deploying Windows Admin Center for Server Management3:51

    Install Windows Admin Center on the SVR one member server with express setup and a self-signed certificate. Log in with domain credentials and add DC1 and core1 for centralized management.

  • Creating AD Lab Users, Groups, and Remote Access Configuration7:49
  • IIS Web Server Installation and Configuration for PKI6:06
  • PKI Share Permissions and Virtual Directory Setup2:57

    Configure share and NTFS permissions for the certain role folder with modify access for the Publishers group, then create a virtual directory in IIS to expose certificates and CRLs.

  • Directory Browsing and Delta CRL Configuration in IIS7:49
  • Offline Root CA Environment Preparation and Security6:32

    Deploys a secure offline root CA as the trust anchor for a PKI hierarchy, with air-gap isolation, security hardening, auditing, and proper authority information access and CRL distribution points.

  • CA Policy File Configuration and Security Parameters7:27

    Define and configure a CA policy file before installing, embedding policy, OID, and notice text; set cert service server parameters, renewal settings, and key usage for server and client authentication.

  • Root Certificate Authority Installation and Setup4:25

    Install the core certificate services, configure a standalone root CA with a new private key (4096-bit, 256 hash) and 20-year validity, following CDP guidelines avoiding delta CRLs.

  • Root CA CDP Configuration and Local Filesystem Setup9:36
  • Authority Information Access Configuration for Root CA3:39
  • PKI File Transfer Using Air-Gapped Security Methods2:51
  • Enterprise CA Policy Configuration and Prerequisites4:14
  • Root CA Certificate and CRL Publishing Methods6:58
  • Enterprise CA Installation and Certificate Request Process5:52

    Install and configure enterprise certificate services, add the Certificate Authority and Web Enrollment roles, enable dependencies, and generate a certificate request for a subordinate CA signed by the root CA.

  • Root CA Certificate Request Processing and Signing5:55
  • Enterprise CA Certificate Installation and Final Setup7:24

Requirements

  • Familiarity with general Windows and Microsoft server administration and technologies

Description

The public key infrastructure (PKI) consists of several components, such as certification authority (CA), that help you secure organizational communications and transactions. You can use CAs to manage, distribute, and validate the digital certificates that you use to secure information. You can install Active Directory Certificate Services (AD CS) as a root CA or a subordinate CA in your organization. In this module, you will learn about deploying and managing CAs.


Objectives

After completing this course, you will be able to:

· Deploy CAs.

· Administer CAs.

· Troubleshoot and maintain CAs.

Who this course is for:

  • Active Directory Administrators
  • Windows Server Administrators

Report abuse