Yournetwork contains an Active Directory domain named contoso.com. The domain contains a
server named Server1 that runs Windows Server 2012 R2. The system properties of Server1 are
shown in the exhibit. (Click the Exhibit button.)
You need to configure Server1 as an enterprise subordinate certification authority (CA).
What should you do first?
A.
Add RAM to the server.
B.
Set the Startup Type of the Certificate Propagation service to Automatic.
C.
Install the Certification Authority Web Enrollment role service.
D.
Join Server1 to the contoso.com domain.
Explanation:
Enterprise CAs must be domain members. From the exhibit we see that it is only a
Workgroup member.
Note:
A new CA can be the root CA of a new PKI or subordinate to another in an existing PKI.
Enterprise subordinate certification authority.
An enterprise subordinate CA must get a CA certificate from an enterprise root CA but can then
issue certificates to all users and computers in the enterprise. These types of CAs are often used for
load balancing of an enterprise root CA.
Install a Subordinate Certification Authority
Correct Answer: D
Enterprise CAs must be domain members. From the exhibit we see that it is only a Workgroup member.
A new CA can be the root CA of a new PKI or subordinate to another in an existing PKI.
Enterprise subordinate certification authority.
An enterprise subordinate CA must get a CA certificate from an enterprise root CA but can then issue certificates to all users and computers in the
enterprise.
These types of CAs are often used for load balancing of an enterprise root CA.
0
0
An enterprise subordinate CA *CAN* (but does not have to) get a CA certificate from an enterprise root CA, just depends on your PKI architecture…
from my experience of last 10ys most usual PKIs I got in touch with were 2-tier with an offline standalone root CA and one or more enterprise sub CAs…
0
0
While the correct answer is the one supplied, it definitely needs to be part of the domain… I am seriously worried about the level of RAM on that server.
2
0