We have implemented a single tier PKI with the NDES role installed on the CA. The NDES is serving up certificates for our MDM (mobile device management) solution. The MDM template was hardcoded into the registry keys Encryption Template, GeneralPurposeTemplate, and SignatureTemplate per the MDM's documentation under HKEY_LOCAL_MACHINE\Software\Microsoft\Cryptography\MSCEP. Now we are being asked to provide additional certificates for our Wireless LAN product from Cisco that is completely different from the MDM solution. The Cisco solution requests we create a certificate template, and modify the same registry keys to point to it. What is the recommended path in Microsoft Certificate services for this type of scenario? Is setting up a 2nd NDES server the correct procedure? How would I go about doing it?
↧