Integration Guide › Integrating with CA SiteMinder › How to Integrate with CA SiteMinder › Configure Automatic Certificate Allocation from an Enterprise Certificate Authority
Configure Automatic Certificate Allocation from an Enterprise Certificate Authority
You can use auto-enrollment to install computer certificates. For the automatic allocation of computer certificates, configure the Group Policy on the Active Directory domain.
Follow these steps:
- On the domain controller, open the Active Directory Users and Computers console.
- Double-click Active Directory Users and Computers, right-click your CA domain name, and click Properties.
- On the Group Policy tab, click Default Domain Policy and Edit.
- Navigate to Computer Configuration, Windows Settings, Security Settings, Public Key Policies, Automatic Certificate Request Settings.
- Right-click Automatic Certificate Request Settings.
- Select New, and click Automatic Certificate Request.
The Automatic Certificate Request wizard opens.
- Click Next.
- In Certificate templates, click Computer and Next.
Your enterprise root CA appears on the list.
- Click CA, Next, and Finish.
You can now import certificates into Enterprise Management. To create a computer certificate for the CA computer, type the following command at the command prompt:
gpupdate /target:Computer.
Copyright © 2013 CA Technologies.
All rights reserved.
|
|