Berg IT Training - In this video, I build a multi-tier private Public Key Infrastructure in Active Directory using Active Directory Certificate Service and Windows Server 2022.
============================================================
Time Stamps
00:00 Video Introduction
01:02 Topology Overview
03:05 Deploy Root Certificate Authority
03:30 Install AD CS on Root CA Server
05:25 Post-Deployment AD CS Configuration
07:42 Configure Root Certificate Extensions
12:04 Publish the Certificate Revocation List
13:45 Export the Root Certificate with Public Key
16:10 Deploy the Enterprise Certificate Authority
16:35 Install AD CS on Enterprise CA Server
18:10 Post-Deployment AD CS Configuration
20:30 Extract Enterprise CA Public Key
21:01 Install Root Certificate on the Enterprise CA
22:10 Configure AIA and CRL Distribution Point Folder
23:30 Perform Certificate Request from Enterprise CA to Root CA
24:31 Extract New .PKB Certificate Granting Enterprise Authority
27:05 Provision Enterprise CA Certificate Authority Service
29:10 Populate Eventual IIS Publication Point
30:55 Provision User and Computer Certificate Templates
35:24 Configure GPO to Auto-Enroll Domain Users and Computers
41:00 Validate New User and Computer Domain Certificates
43:34 Video Outro
============================================================
Supplemental Links
Troy's PKI Battle Plan (Downloadable Text Document from Video)
https://1drv.ms/t/s!AufbdIWKC1AfgZp6ZcwV7-zPEgUGYg?e=0UNWwL
Designing and Implementing a PKI: Part I Design and Planning
https://techcommunity.microsoft.com/t5/ask-the-directory-services-team/designing-and-implementing-a-pki-part-i-design-and-planning/ba-p/396953
Designing and Implementing a PKI: Part II Implementation Phases and Certificate Authority Installation
https://learn.microsoft.com/en-us/archive/blogs/askds/designing-and-implementing-a-pki-part-ii-implementation-phases-and-certificate-authority-installation
Designing and Implementing a PKI: Part III Certificate Templates
https://learn.microsoft.com/en-us/archive/blogs/askds/designing-and-implementing-a-pki-part-iii-certificate-templates
Designing and Implementing a PKI: Part IV Configuring SSL for Web Enrollment and Enabling Key Archival
https://learn.microsoft.com/en-us/archive/blogs/askds/designing-and-implementing-a-pki-part-iv-configuring-ssl-for-web-enrollment-and-enabling-key-archival
Designing and Implementing a PKI: Part V Disaster Recovery
https://learn.microsoft.com/en-us/archive/blogs/askds/designing-and-implementing-a-pki-part-v-disaster-recovery
============================================================
My mission with my videos is to provide useful, comprehensive information regarding information technology, infrastructure and computing technology, networking, cybersecurity, local area network management, and IT project management in an engaging and entertaining way.
Like this content? Check out my work-in-progress playlists:
Fundamentals of Local Area Network Management
https://www.youtube.com/playlist?list=PLWO00NoUXa4zGGqc--I8IAWIQhE9a47YL
Journey to CCNA (series in progress)
https://www.youtube.com/playlist?list=PLWO00NoUXa4yNhmBVm65lN2bveWCQXG1o
Practical Cybersecurity (series in progress)
https://www.youtube.com/playlist?list=PLWO00NoUXa4yOqLxQJYDlHwgALeyYUo2f
#ittraining #pki #publickey #server2022 #activedirectory #cybersecurity #ADCS #ADDS