One of the most common types of certificates deployed in a Microsoft Windows networking environment is domain controller (also referred to a Kerberos Distribution Center or KDC) certificates. The KDC certificates are used by domain controllers for:
Authenticating the domain controllers when a user logs on to the network with a smart card.
Securing queries by Lightweight Directory Access Protocol (LDAP) clients when a user queries Active Directory Domain Services (AD DS) using an LDAP Secure Sockets Layer (LDAPS)–protected connection.
Securing Simple Mail Transfer Protocol (SMTP) replication traffic between AD DS sites.
Windows Server 2008 includes four ...