Which certificate template should I use for Domain Controllers

In fact, you have three possibilities:

  • Domain Controller (Windows Server 2000)
  • Domain Controller Authentication (Windows Server 2003)
  • Kerberos Authentication (Windows Server 2008 and above)

This explanation comes from Russell Tomkins a Microsoft Premier Field Engineer in a very good post which you can find here:

Creating Custom Secure LDAP Certificates for Domain Controllers with Auto Renewal

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s