The application of Group Policy triggers the autoenrollment mechanism, initiating the automatic download of any certificates or CRLs published in Active Directory to the forest members. The published CA certificates and CRLs are automatically downloaded to the Windows 2000, Windows XP, and Windows Server 2003 forest members through Group Policy application.
By publishing the CA certificates to Active Directory, you ensure the automatic propagation of CA certificates and CRLs to all Windows 2000, Windows XP, and Windows Server 2003 forest members. In addition to publishing the CA certificates and CRLs to the local machine store of subordinate CAs, you can publish CA certificates and CRLs for any offline CAs to Active Directory.
0 kommentar(er)
