This course explores how to design a Certificate Services infrastructure, implement and manage a Certificate Services infrastructure, implement and manage certificates, design and implement a federated identity solution, and design and implement Active Directory Rights Management Services.
In this course you'll learn how to design a multi-tier certificate authority hierarchy with offline root CA, plan for multi-forest CA deployment, Certificate Enrollment Web Services and Certificate Enrollment Policy Web Services, Network Device Enrollment Services, certificate validation and revocation, disaster recovery, trust between organizations including Certificate Trust Lists, cross certifications, and bridge CAs. You will also learn to configure and manage offline root CA, Certificate Enrollment Web Services and Certificate Enrollment Policy Web Services, Network Device Enrollment Services, and Online Certificates Status Protocol responders. We will also learn how to implement administrator role separation; implement and manage trust between organizations, including certificate trust lists, cross certifications, and bridge CAs; migrate CAs; monitor CA health; manage certificate templates, certificate deployment, validation, renewal, revocation, and publishing including internet-based clients, CAs, and network devices. We will configure and manage key archival and recovery, plan for and implement identity integration with cloud services and claims-based authentication, including planning and implementing Relying Party Trusts, integrate Web Application Proxy with AD FS, plan for and manage Active Directory Federation Services certificates, plan for and configure attribute stores including Active Directory Lightweight Directory Services, Claims Provider and Relying Party Trust Claim Rules, as well as plan for highly available AD RMS deployment, and AD RMS client deployment, manage Trusted User and Trusted Publishing Domains, manage federated identity support, upgrade or migrate AD RMS, and decommission AD RMS.