Book description
In order to deploy and use Microsoft Certificate Services, you need to understand the fundamentals of cryptography, digital signatures, encryption, TLS, and S/MIME. It is also important to understand the concepts behind public key infrastructure (PKI). This book teaches you all the required background knowledge you need. Then it takes you deeper, step by step, teaching you how to deploy Certificate Services and configure it to issue various digital certificate types, complete with examples of using these certificates with IIS, Outlook, and Windows.
Most IT workers don’t realize the many uses and purposes of Certificate Services, especially within a corporate or government agency network, and how tightly integrated they are with the Microsoft Windows Domain style of networks and Active Directory (on-premises or cloud-based, including Azure, AWS, and Google Cloud Services). This book will teach you the gamut.
You will appreciate the learning approach presented in the book, beginning with the basics (cryptographic primitives such as encryption and message digests), getting into combinations of primitives to accomplish specific things (such as digital signatures and envelopes), and then trying real-word systems based on digital certificates and PKI (such as TLS, S/MIME secure email, cryptographic authentication, and more). The book wraps it all up and teaches you how to deploy Certificate Services and issue the various types of certificates, including how they are used.
- Understand basic cryptography (symmetric and asymmetric key encryption, message digests, and digital signatures and envelopes)
- Know how TLS, S/MIME, and cryptographic authentication work
- Discover applications of cryptography related to secure servers with TLS and cryptographic (passwordless) authentication to online services including Windows and secure email
- Get to know the common types of digital certificates, how to create and manage them, and examples of their use with IIS, Outlook, etc.
Who This Book Is For
Microsoft system and network engineers, security engineers, and CISOs. Readers should have familiarity with Windows Server 2019 (or more recent) and Active Directory.
Table of contents
- Cover
- Front Matter
-
Part I. Foundations in Cryptography, Digital Certificates, and PKI
- 1. Basic Cryptography: Symmetric Key Encryption
- 2. Basic Cryptography: Hash Function
- 3. Basic Cryptography: Asymmetric Key Encryption
- 4. Digital Signature and Digital Envelope
- 5. X.509 Digital Certificate
- 6. PKCS #10 Certificate-Signing Request (CSR)
- 7. Certificate Revocation and Renewal
- 8. Key Management
- 9. Certificate Management Protocols
- 10. Public Key Infrastructure (PKI)
- 11. SSL and TLS
- 12. S/MIME Secure Email
- Part II. Deploying and Using Active Directory Certificate Services
- Back Matter
Product information
- Title: Pro Active Directory Certificate Services: Creating and Managing Digital Certificates for Use in Microsoft Networks
- Author(s):
- Release date: March 2022
- Publisher(s): Apress
- ISBN: 9781484274866
You might also like
book
Active Directory Administration Cookbook - Second Edition
Simplified actionable recipes for managing Active Directory and Azure AD, as well as Azure AD Connect, …
book
Network Protocols for Security Professionals
Get to grips with network-based attacks and learn to defend your organization's network and network devices …
book
Mastering Active Directory - Second Edition
Become an expert at managing enterprise identity infrastructure by leveraging Active Directory Key Features Explore the …
book
Active Directory Administration Cookbook
Learn the intricacies of managing Azure AD and Azure AD Connect, as well as Active Directory …