O'Reilly logo

Windows Server® 2008 PKI and Certificate Security by Brian Komar

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Certificate Template Design

The number of certificate templates that you design for VPN access will depend on the tunneling protocol and authentication protocols used in your solution. The sections that follow detail the certificate template requirements for each component of the VPN solution.

User Authentication

The user authentication certificate must include the Client Authentication OID in the EKU. For the VPN user authentication, you implement either a private key and certificate stored in the user’s profile or a certificate stored on a smart card.

If you choose to deploy a certificate on a Smart Card certificate for VPN authentication, consider duplicating the version 1 Smart Card Login certificate template. Make the following modifications ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required