How to install Certificate Authority in Windows Server 2012 R2

  

Let’s see a step by step guide to install certificate authority on Windows server 2012 R2. We need to install Certification Authority role service of Active Directory Certificate Services to configure Windows server 2012 to act as CA. It helps to identify the end users of the organization by allocating a certification authority for each user.

Install Certification Authority on Windows Server 2012 R2

Navigate to server manager and click Manage menu and select “Add roles and features” from the drop-down menu.

Install certificate authority in Windows server 2012 - Step 1

Step 2:

On the Add roles and services wizard, select Active Directory Certificate Services and then click Next

Install certificate authority in Windows server 2012 - Step 2

In the AD CS Role services, select the Certificate Authority checkbox and Certification Authority Web Enrollment check box. Then proceed with Next Button

Install certificate authority in Windows server 2012 - Step 3

For Web Server Role (IIS) interface and Role Services, click Next button and proceed. Click install button on the installation confirmation window

Install certificate authority in Windows server 2012 - Step 4

Once the installation process is complete, we need to Active Directory Certificate Services.

Click “Configure Active Directory Certificate Services on the destination server” link (Refer to the below image)

Install certificate authority in Windows server 2012 - Step 5

On the Credentials window, make sure the Credentials is “Administrator” and then click “Next”

Install certificate authority in Windows server 2012 - Step 6

On the Role services window, markCertificate Authority” and “Certification Authority Web Enrollment

Install certificate authority in Windows server 2012 - Step 7

For CA type, select “Root CA” and proceed with Next.. and for type of CA, select “Enterprise CA

Install certificate authority in Windows server 2012 - Step 8

Install certificate authority in Windows server 2012 - Step 9

In the Private Key window, select “Create a new private key

Install certificate authority in Windows server 2012 - Step 10

In the Cryptography for CA window, you can select the SHA256 or SHA1 as hash algorithm. Also for Cryptographic provider, use RSA Cryptography with 2048 key length.

Install certificate authority in Windows server 2012 - Step 11

In the CA Name Window, proceed with default settings and click “Next”

Install certificate authority in Windows server 2012 - Step 12

In the Validity Period window, you can choose the years depend on your organization’s security policy. The default settings are “5 years” and then click Next…

Install certificate authority in Windows server 2012 - Step 13

In the CA Database window, just click Next button

 

 Install certificate authority in Windows server 2012 - Step 14

In the Confirmation window, click Configure button. The configuration process will take few minutes.

Install certificate authority in Windows server 2012 - Step 15

 

Install certificate authority in Windows server 2012 - Step 16

Finally, Certificate authority (CA) and CA Web Enrollment successfully installed

Install certificate authority in Windows server 2012 - Step 17

Add a Comment

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close