Configuration of active directory certificate services

Authentication of WLAN clients at the RADIUS server occurs via secure transport connection. For this, the certificate from a certification authority (CA certificate) is necessary. The Server Manager is used to add the Server role.

The Active Directory Certificate Services of the Windows Server are used in this workshop.

Access to the certificate occurs via a web interface.

For this, Role service Certification authority web registration is installed in addition to the certification authority itself.

In the next steps of the assistant for creating server roles Active Directory Certificate Services the Installation Type of the certification authority is selected.

Select the Company option.

In the Certification Authority Type menu, select the Root Certification Authority option.

In our example, at initial installation of the certification authority, a new Private Key is also generated.

Select the Create New Private key option.

In the Encryption menu, select hash algorithm SHA1 and a Key Character Length of 2048 bits.

In the next step, the designation of the certification authority certificate is specified in the Certification Authority menu, along with the distinguished name (DN).

Under Common Name of this Certification Authority enter WorkshopWLANCA , for example.

As Suffix of the defined name enter DC=wlan,DC=funkwerk-ec,DC=com , for example.

Also select the Period of Validity for the certification authority certificate.

In our example, the period of validity is set to 15 years .

At conclusion of the installation of the server role Active Directory Certificate Services a summary is displayed, along with the result of the installation.