Microsoft Active Directory Certificate Services (AD CS)
This document describes how to install, configure, and integrate Microsoft Active Directory Certificate Services (AD CS) with the CipherTrust Manager. AD CS is the Server Role that enables you to provide digital certificates, public key cryptography, and digital signature capabilities for your organization.
AD CS provides custom services to issue and manage the digital certificates used in software security systems that use public key technologies. Digital certificates provided by AD CS can be used to encrypt and digitally sign electronic messages and documents. Moreover, you can use them to authenticate user accounts, computers, or devices on a network.
Supported Product Versions
This integration is validated on the following operating system variants:
Windows
Windows Server 2012 R2
Windows Server 2016 Standard
CipherTrust Manager
- CipherTrust Manager 2.3 and higher
SafeNetProtectApp Key Storage Provider
- SafeNetProtectApp Key Storage Provider 8.9.0 and higher
Prerequisites
Ensure that the CipherTrust Manager is installed and configured. For more details, refer to the CipherTrust Manager Documentation.
AD CS communicates with the CipherTrust Manager using the Network Attached Encryption (NAE)-XML Interface. Ensure that the NAE-XML interface is configured. For more details, refer to the CipherTrust Manager Documentation.
Ensure that the port configured on NAE-XML interface is accessible from the AD CS machine.
Ensure Setting up SSL.
Steps For The Integration
To integrate AD CS with the CipherTrust Manager: