August 2019
Intermediate to advanced
786 pages
20h 22m
English
Content preview from Mastering Active Directory - Second Edition
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
CDP locations
CDPs define the location where the CRL can be retrieved from. This is a web-based location and should be accessible via HTTP. This list will be used by the certificate validator to verify the given certificate against the revocation list.
Before we do this, we need to prepare the web server. It should be a domain member, as the issuing CA is also in a domain.
In my demonstration, I am going to use the same issuing CA as the CDP location.
The web server can be installed using the following command:
Install-WindowsFeature Web-WebServer -IncludeManagementTools
Next, create a folder and create a share so that it can be used as the virtual directory:
mkdir C:\CertEnroll New-smbshare -name CertEnroll C:\CertEnroll -FullAccess SYSTEM,"rebeladmin\Domain ...