Implement Active Directory Certificate Services (AD CS) (MCSA 2016)
SKILLSET
No description available
Related Questions
- If more than one enrollment policy server supports the same enrollment policy, then each server should be configured to use different enrollment policy friendly name?
- If the certificate was configured with Read and Enroll permissions, the new key recovery agent must use the Certificates snap-in and the Certificate Import Wizard to obtain a key recovery certificate?
- Associated with each certificate template is a DACL that defines which security principals have permissions to read and configure the template, as well as to enroll or autoenroll for certificates based on the template. What does DACL stands for?
- If you have deployed user certificates, the domain user enrolls a computer certificate that is based on the template that you configured in the previous step.
- If the Number of recovery agents to use value exceeds the number of recovery agent certificates with the status of Valid, enrollment requests that require key archival will which of the following?
- The certificate templates and their permissions are defined in Active Directory Domain Services (AD DS) and are valid within which of the following?
- To automatically enroll clients for certificates in a domain environment, you must:
- If the added enrollment policy server supports an enrollment policy that is already displayed in Certificate enrollment policy list, then the added server will be displayed separately.
- To configure your environment for key archival of Encrypting File System (EFS) certificates, you must be member of which of the following group?
- If more than one enterprise CA is running in the Active Directory forest, permission changes will affect all enterprise CAs.