Your network contains an Active Directory domain named contoso.com.
The domain contains an enterprise certification authority (CA) named CA1.
You duplicate the Computer certificate template, and you name the template Cont_Computers.
You need to ensure that all of the certificates issued based on Cont_Computers have a key size of 4,096 bits.
What should you do?
A.
From the properties of CA1, modify the Security settings.
B.
From the properties of CA1, modify the Request Handling settings.
C.
From the properties of the Computer template, modify the Key Attestation settings.
D.
From the properties of Cont_Computers, modify the Cryptography settings.
D.
From the properties of Cont_Computers, modify the Cryptography settings.
Tested in Lab
34
2
hello
i need your help please contact with me
rahimshannan@gmail.com
0
7
modify the Cryptography settings
https://blogs.technet.microsoft.com/pki/2012/04/27/best-practice-for-configuring-certificate-template-cryptography/
10
0
The answer is D. Although the actual setting is called “Minimum key size” so in theory you could opt to create 8192 bits. Oh, well…
10
0