Enterprise Root CA
- An enterprise root CA is the certificate server at the root of the hierarchy for a Windows domain.
- It is the most trusted CA in the enterprise.
- It is the top level CA in a certification hierarchy.
- It requires access to Active Directory service.
- It self signs its own certificate and uses Group Policy to publish that certificate to the Trusted Root Certification Authorities store of all servers and workstations in the domain.
- One must be a Domain Administrator or be an administrator with write access to Active Directory to install an enterprise root CA.
- Normally, an enterprise root CA does not directly provide resources for other certificates, but is the foundation for a certificate hierarchy.
What is an enterprise subordinate CA?
© 2006 John Michael Pierobon
Notes
![[OUTLINE]](../images/index.gif)
![[PREVIOUS]](../images/back.gif)
![[NEXT PAGE]](../images/next.gif)
![[CHAPTER 4]](../images/up.gif)