MS Win 2016 Server - PKI installation

Owned by Stine Granviken
Feb 25, 2018
1 min read


(lightbulb) This information is written in English only

Installation and configuration of CA, AD and CRL

This guide describes the steps for installing and configuring a Microsoft PKI infrastructure with its belongigs to support Buypass Access Manager - the BAM client.

The document is for technical personnel with knowledge of installing and configuring Windows Server 2016, Active Directory and understanding of basic PKI principles.

General requirements

Before installing the Microsoft CA, you need the following requirements:

  • An established Microsoft Active Directory database
  • Windows Server 2016 Standard media
  • Enterprise admin permission in the domain
  • Access to a BAM client computer with 2 smartcard readers
  • Buypass Access Enteprise license

Hardware requirements

You need the following server - the server can be virtualized if wanted:

  • Root CA: Microsoft Server 2016 Standard


Installation of Microsoft Active Directory

To install and configure a Microsoft PKI infrastructure you require a Microsoft Active Directory. This and the next sections will only cover an excample of installation and configuration made in Buypass TEST LAB environment.

AD DS Lab environment

Domain: lab01.local
Domain functional level: Windows Server 2016 

DNS

DNS records will automatically be created at the server that joins the domain. Other DNS records for internal and external zones have to be created manually.


 

Content 

Unable to render {include} The included page could not be found.

Unable to render {include} The included page could not be found.

 

Unable to render {include} The included page could not be found.
Unable to render {include} The included page could not be found.
 
Unable to render {include} The included page could not be found.