June 2017
Beginner to intermediate
742 pages
18h 29m
English
Content preview from Mastering Active Directory
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Publishing the root CA data into the Active Directory
In the preceding list, we have two files on of which ends with .crt. This is the root CA certificate. In order to be trusted by other clients in the domain, it needs to publish to the Active Directory. To do that, copy this file from the root CA to Active Directory server. Then, log into AD as the Domain Admin or Enterprise Admin and run the command:
certutil –f –dspublish "REBEL-CRTROOT_REBELAdmin Root CA.crt" RootCA
The next file ends with .crl. This is the root CA's CRL. This also needs to publish to AD. So, everyone in the domain is aware of that too. In order to do that, copy the file from root CA to domain controller and run the command:
certutil –f –dspublish "REBELAdmin Root ...