![]() |
|
English | ||
![]() |
: Panvasoft / / PKI Windows Server 2003 |
CA
Certification Authority (CA), Microsoft (Certificate Server) (Certificate Services), PKI (Public Pey Infrastructure) Windows Server 2003. CA PKI, , PKI, , , CRL (ertificate Revocation Lists), CRL. Windows 2003 CA . CA PKI Windows 2003, Certificate Services, CA Windows 2003. Windows 2003 Certificate Services. Windows 2003 Certificate Services , Microsoft . , Microsoft CA . . , , , CryptoAPI. ![]() . Certificate Services CA (certsrv.exe), CA Certificate Services. CA , . , 10 (Public-Key Cryptography Standards, PKCS #10) , (Cryptographic Management protocol using Cryptographic Message Syntax, CMS). . CA , CA. CA , . , - (, Active Directory) . , Windows 2003, certpdef.dll. : . . , CA , Certification Authority MMC, CA, Properties Policy Module, 1. ![]() 1. Policy Module , , CRL CRL. PKI , HTTP RPC. Windows 2003 CA , , , c CRL CRL , LDAP, , Web , , ODBC- . Windows 2003 CA , certxds.dll, LDAP, FTP, HTTP SMTP ( Windows 2000 CA , ). CA PKI . , CA , Certification Authority MMC, CA, Properties Exit Module, 2. ![]() 2. Exit Module , C++ Visual Basic (VB) Certificate Services. Software Development Kit (SDK) Windows 2003. Certification Authority certutil.exe. CA Certification Authority, , X.509 (, CDP (CRL Distribution Points) AIA (Authority Information Access)), CRL CRL. . CA , CAname.edb. , , . . \%systemroot%\system32\certlog. CA certdb.dll. Windows 2000 Certificate Services Microsoft . Jet, Windows 2000 CA . , AD Microsoft Exchange Server. . Windows 2003 CA Certification Authority, certutil.exe. CA certadm.dll. (intermediaries). , , PKCS #10 CMS, Registration Authorities (RA). , . , , Windows 2003 CA, . RA . , (, HTTP RPC), CA . Windows 2003 Web- , HTTP, Certificates MMC, Certificate Request Wizard, RPC-. HTTP xenroll.dll, - scenroll.dll. RPC certcli.dll. CryptoAPI. , CA, CryptoAPI. CA (, Hardware Security Module, HSM). Windows 2003 Certificate Services Windows 2003 Certificate Services CA, CA, CA ( AD) CA ( AD). Certificate Services , Windows 2003 CA. , . , , Windows 2003 CA. CA , , Enterprise administrator Domain administrator AD. , , CA, AD. , CA installation Wizard enterprise CA, CA . CA, AD . CA , , , (DC). Enterprise administrator Domain administrator, . CA - Enterprise administrator, . , Enterprise administrator CA , , CA AD. CA , AD . . , CA , CA, . PKI Windows 2003 2, , 1, . Certificate Templates MMC. CA AD, , . CA , Web- (Secure Sockets Layer, SSL; Transport Layer Security, TLS), (Secure MIME, S/MIME), , IP Security (IPSec). Web- CA (, ) , (OID), X.509- Extended Key Usage. CA Active Directory , . , X.509 SubjectAltName , CA, , AD, — User Principal Name (UPN). CA , AD, , Web- , . , CA , CA . certdat.inc, \%systemroot%\system32\certsrv. , , : sDefaultCompany, sDefaultOrgUnit, sDefaultLocality, sDefaultState, sDefaultCountry. , . CA , Windows 2003 , . , CA, , - . CA CA, — . CA . , CA ( ), 2 ( Issuance Requirements ). 2, , , . , , . CA Set the certificate request status to pending. The administrator must explicitly issue the certificate. CA, , CA , , , . , CA Windows, Microsoft CA. , , . CRL CA , CRL CRL Active Directory. , CA . AD , . Active Directory UserCertificate AD inetOrgPerson. , CA AD. , , CTL (certificate trust list). CA AD, . CA , . , AD . CA, , CA , , CA, . Windows 2003 CA , AD Kerberos AD. (, , Windows ) Windows 2003 A. . Windows2003 CA
: : : PKI Windows Server 2003 AD . Windows Home Server CTP ( 1) Dfs Microsoft - Windows Home Server. :
|
|
![]() |