Overview
Learning Outcomes:
In this module, you will complete the following exercises:
- Exercise 1 – PKI Fundamentals
- Exercise 2 – Create a Self-Signed Certificate
- Exercise 3 – Install and Configure Active Directory Certificate Services
- Exercise 4 – Configure Certificate Revocation Lists (CRLs)
- Exercise 5 – Manage Certificate Templates
- Exercise 6 – Configure Certificate Auto Enrollment
- Exercise 7 – Implement Key Archival
After completing this module, you should be able to:
- Create a self-signed certificate.
- Install Active Directory enterprise root certificate service.
- Configure Active Directory certificate services.
- Install subordinate CA.
- Configure subordinate CA.
- Request user certificates.
- Verify issued certificate.
- Configure a new path for CRLs.
- Add certificate managers.
- View the certificate templates.
- Configure a customized certificate template.
- Create a Group Policy for certificate auto enrollment.
- Verify the certificate issuance.
- Enable a key recovery agent.
- Request for key recovery agent certificate.
- Issue key recovery agent certificate.
- Configure CA for key archival.
After completing this module, you should have further knowledge of:
- PKI concepts
- Types of certificates
- Certificate formats
Exam Objectives:
The following exam objective is covered in this lab:
3.9 Given a scenario, implement public key infrastructure.
- Public key infrastructure (PKI)
- Types of certificates
- Certificate formats
Note: Our main focus is to cover the practical, hands-on aspects of the exam objectives. We recommend referring to course material or a search engine to research theoretical topics in more detail.