August 2019
Intermediate to advanced
786 pages
20h 22m
English
The next step is to create a new CRL, which can be generated using the following command:
certutil -crl
Once that's done, there will be two files under C:\Windows\System32\CertSrv\CertEnroll:

This completes the initial configuration of a standalone root CA. As a next step, we need to publish the root CA data to AD. This way, AD-joined computers will have the root CA certificates under the computer's Trusted Root Certification Authorities certificates.
Read now
Unlock full access