O'Reilly logo

Windows Server 2016 Automation with PowerShell Cookbook - Second Edition by Thomas Lee

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

How to do it...

  1. Install ADCS features on the root computer:
      Install-WindowsFeature -Name ADCS-Cert-Authority `                             -IncludeManagementTools
  1. Create CA policy file:
      $CaInf = @"
       [Version]
       Signature="$Windows NT$"
       [Certsrv_Server]
       RenewalKeyLength=4096
       RenewalValidityPeriod=Years
       RenewalValidityPeriodUnits=20
       CRLPeriod=Weeks
       CRLPeriodUnits=26
       CRLDeltaPeriod=Days
       CRLDeltaPeriodUnits=0
       LoadDefaultTemplates=0
       AlternateSignatureAlgorithm=1
      "@
      $PathInf = Join-Path -Path $Env:SystemRoot `                           -ChildPath 'capolicy.inf'
      $CaInf | Out-File -FilePath $PathInf
  1. Install a CertificateAuthority based on the capolicy.inf file you created in step 2:
      Install-AdcsCertificationAuthority -CAType StandaloneRootCA `
      -KeyLength 4096 -HashAlgorithmName SHA256 ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required