Skip to content

ADCS Resources⚓︎

Never add a CPS to a root server⚓︎

If you have an intermediate server you should not add a CPS to your root server. Only the intermediate should have the CPS.

Don’t add an CDP LDAP location on an offline Root if CDP http location is HA⚓︎

Use a random OID or apply for a proper PEM⚓︎

RFC3647 - Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework⚓︎

ADCS Delegation⚓︎

How to Decommission an old CA⚓︎

NDES servers can’t be HA⚓︎

Using a gMSA for your NDES Service⚓︎

Setting up an NDES Server⚓︎

Enable SANs via ADCS Web Enrollment Pages⚓︎

Getting Kerberos Working with CA Web Enrollment Proxy⚓︎

Web Enrollment Won’t Show Templates⚓︎