deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-12 13:27:23 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity
windows-itpro-docs/windows/security/identity-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md
Justin Hall 897162ef2b restart re-org
2018-02-01 09:55:37 -08:00

2.4 KiB
Raw Blame History

title, description, ms.assetid, ms.prod, ms.mktglfcycl, ms.sitesec, ms.pagetype, author, ms.date
title description ms.assetid ms.prod ms.mktglfcycl ms.sitesec ms.pagetype author ms.date
Checklist Implementing a Certificate-based Isolation Policy Design (Windows 10) Checklist Implementing a Certificate-based Isolation Policy Design 1e34b5ea-2e77-4598-a765-550418d33894 w10 deploy library security brianlic-msft 08/17/2017

Checklist: Implementing a Certificate-based Isolation Policy Design

Applies to

  • Windows 10
  • Windows Server 2016

This parent checklist includes cross-reference links to important concepts about using certificates as an authentication option in either a domain isolation or server isolation design.

Note:  Complete the tasks in this checklist in order. When a reference link takes you to a procedure, return to this topic after you complete the steps in that procedure so that you can proceed with the remaining tasks in this checklist

Checklist: Implementing certificate-based authentication

Task Reference
Review important concepts and examples for certificate-based authentication to determine if this design meets your deployment goals and the needs of your organization. Identifying Your Windows Defender Firewall with Advanced Security Deployment Goals
Certificate-based Isolation Policy Design
Certificate-based Isolation Policy Design Example
Planning Certificate-based Authentication
Install the Active Directory Certificate Services (AD CS) role as an enterprise root issuing certification authority (CA). This step is required only if you have not already deployed a CA on your network.
Configure the certificate template for workstation authentication certificates. Configure the Workstation Authentication Certificate Template
Configure Group Policy to automatically deploy certificates based on your template to workstation devices. Configure Group Policy to Autoenroll and Deploy Certificates
On a test device, refresh Group Policy and confirm that the certificate is installed. Confirm That Certificates Are Deployed Correctly